nsinnovations/fusionpbx
2
0
Fork 0
mirror of https://github.com/fusionpbx/fusionpbx.git synced 2026-01-06 11:43:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Security Fixes (#4268)

Browse Source 
* Updated fixes for CVE-2019-11409

* Fix for XSS - (CVE-2018-19094)

* Fix for fax cmd injection (CVE-2018-19096)
This commit is contained in:
blackwolfresearch
2019-06-06 20:46:01 -04:00
committed by FusionPBX
parent 1101f108ba
commit 51fcd89756
2 changed files with 11 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
app/calls_active/calls_active_inc.php
View File

@@ -202,8 +202,8 @@
echo "<td valign='top' class='".$row_style[$c]."'>".$domain_name."&nbsp;</td>\n";
}
echo "<td valign='top' class='".$row_style[$c]."'>".$tmp_number."&nbsp;</td>\n";
echo "<td valign='top' class='".$row_style[$c]."'>".$cid_name."&nbsp;</td>\n";
echo "<td valign='top' class='".$row_style[$c]."'>".$cid_num."&nbsp;</td>\n";
echo "<td valign='top' class='".$row_style[$c]."'>".escape($cid_name)."&nbsp;</td>\n";
echo "<td valign='top' class='".$row_style[$c]."'>".escape($cid_num)."&nbsp;</td>\n";
echo "<td valign='top' class='".$row_style[$c]."'>".$dest."&nbsp;</td>\n";
echo "<td valign='top' class='".$row_style[$c]."'>".((strlen($application) > 0) ? $application.":".$application_data : null)."&nbsp;</td>\n";
echo "<td valign='top' class='".$row_style[$c]."'>".$read_codec.":".$read_rate." / ".$write_codec.":".$write_rate."&nbsp;</td>\n";