First published: Mon Dec 25 2023(Updated: )
The CRM Integration in 3CX before 18.0.9.23 and 20 before 20.0.0.1494 allows SQL Injection via a first name, search string, or email address.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
3CX 3CX | <18.0.9.23 | |
3CX 3CX | >=20.0<20.0.0.1494 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.