Cross Site Scripting vulnerability in Innovaphone myPBX v.14r1, v.13r3, v.12r2 allows a remote attacker to execute arbitrary code via the query parameter to the /CMD0/xml_modes.xml endpoint
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-02T00:56:58.356Z
Reserved: 2024-03-08T00:00:00
Link: CVE-2024-28722

Updated: 2024-04-22T14:39:28.780Z

Status : Awaiting Analysis
Published: 2024-04-22T01:15:47.257
Modified: 2024-11-21T09:06:49.393
Link: CVE-2024-28722

No data.