← Back to CVE List

CVE-2020-21053

Published: 2021-05-20T15:15Z
Last Modified: 2024-11-21T05:12Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Cross Site Scriptiong (XSS) vulnerability exists in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "query_string" variable in app\devices\device_imports.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt