Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-21054

Disclosure Date: May 20, 2021 (last updated February 22, 2025)
Cross Site Scripting (XSS) vulnerability in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "f" variable in app\vars\vars_textarea.php.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0