CVE

CVE-2020-21054

CVE-2020-21054

Cross Site Scripting (XSS) vulnerability in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "f" variable in appvarsvars_textarea.php.

Source: CVE-2020-21054

Exit mobile version