CVE-2018-17562

Multi-Tech FaxFinder before 5.1.6 has SQL Injection via a status/call_details?oid= URI, allowing an attacker to extract the underlying database schema to further disclose other fax server information through different injection points.
Configurations

Configuration 1

cpe:2.3:a:multitech:faxfinder:*:*:*:*:*:*:*:*

Information

Published : 2018-10-03 08:29

Updated : 2018-11-21 11:32


NVD link : CVE-2018-17562

Mitre link : CVE-2018-17562

Products Affected
No products.
CWE