Vulnerabilities (CVE)

Filtered by vendor Freepbx Subscribe
Filtered by product Disa
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-15892 1 Freepbx 1 Disa 2024-02-04 6.0 MEDIUM 4.3 MEDIUM
FreePBX 13 and 14 has SQL Injection in the DISA module via the hangup variable on the /admin/config.php?display=disa&view=form page.