Multitech: >> Faxfinder >> 4.1.2 Security Vulnerabilities
Multi-Tech FaxFinder before 5.1.6 has SQL Injection via a status/call_details?oid= URI, allowing an attacker to extract the underlying database schema to further disclose other fax server information through different injection points.
CVSS Score
7.5
EPSS Score
0.005
Published
2018-10-03