CVE-2021-43403
CVE-2021-43403
An issue was discovered in FusionPBX before 4.5.30. The log_viewer.php Log View page allows an authenticated user to choose an arbitrary filename for download (i.e., not necessarily freeswitch.log in the intended directory).
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →