VYPR

myPBX

by Innovaphone

CVEs (1)

  • CVE-2024-28722MedApr 22, 2024
    risk 0.41cvss 6.3epss 0.01

    Cross Site Scripting vulnerability in Innovaphone myPBX v.14r1, v.13r3, v.12r2 allows a remote attacker to execute arbitrary code via the query parameter to the /CMD0/xml_modes.xml endpoint