Vulnerabilities > Sangoma > Freepbx > 15.0.18

DATE CVE VULNERABILITY TITLE RISK
2019-12-06 CVE-2019-19552 Cross-site Scripting vulnerability in Sangoma Freepbx
In userman 13.0.76.43 through 15.0.20 in Sangoma FreePBX, XSS exists in the user management screen of the Administrator web site, i.e., the/admin/config.php?display=userman URI.
network
low complexity
sangoma CWE-79
4.8
4.8
2019-12-06 CVE-2019-19551 Cross-site Scripting vulnerability in Sangoma Freepbx
In userman 13.0.76.43 through 15.0.20 in Sangoma FreePBX, XSS exists in the User Management screen of the Administrator web site.
network
low complexity
sangoma CWE-79
4.8
4.8