CVE-2019-16967

MEDIUM

Freepbx Manager < 13.0.2.6 - XSS

Title source: rule

Description

An issue was discovered in Manager 13.x before 13.0.2.6 and 15.x before 15.0.6 before FreePBX 14.0.10.3. In the Manager module form (html\admin\modules\manager\views\form.php), an unsanitized managerdisplay variable coming from the URL is reflected in HTML, leading to XSS. It can be requested via GET request to /config.php?type=tool&display=manager.

References (3)

Core 3

Core References

Exploit, Vendor Advisory x_refsource_misc

https://issues.freepbx.org/browse/FREEPBX-20436

Patch, Third Party Advisory x_refsource_misc

https://github.com/FreePBX/manager/commit/071a50983ca6a373bb2d1d3db68e9eda4667a372

View Patch ZIP pw:eip

Patch, Third Party Advisory x_refsource_misc

https://resp3ctblog.wordpress.com/2019/10/19/freepbx-xss-2/

Scores

CVSS v3 6.1

EPSS 0.0033

EPSS Percentile 56.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (3)

freepbx/manager 13.0.1 alpha1

freepbx/manager 13.0.2 - 13.0.2.6

sangoma/freepbx < 14.0.10.3

Published Oct 21, 2019

Tracked Since Feb 18, 2026