A stored cross-site scripting (XSS) vulnerability in Issabel issabel-pbx v.4.0.0-6 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Virtual Fax Name and Caller ID Name parameters under the New Virtual Fax feature.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-07-11T00:00:00
Updated: 2024-08-02T17:09:32.746Z
Reserved: 2023-06-28T00:00:00
Link: CVE-2023-37190
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-07-11T02:15:09.107
Modified: 2023-07-17T19:24:24.170
Link: CVE-2023-37190
Redhat
No data.