Read Time:20 Second
Posted by KoreLogic Disclosures via Fulldisclosure on Sep 10
KL-001-2024-011: VICIdial Unauthenticated SQL Injection
Title: VICIdial Unauthenticated SQL Injection
Advisory ID: KL-001-2024-011
Publication Date: 2024-09-10
Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2024-011.txt
1. Vulnerability Details
Affected Vendor: VICIdial
Affected Product: VICIdial
Affected Version: 2.14-917a
Platform: GNU/Linux
CWE Classification: CWE-89:…