CVE-2023-37599
Description
An issue in issabel-pbx v.4.0.0-6 allows a remote attacker to obtain sensitive information via the modules directory
NVD
Severity: HIGH
CVE ID: CVE-2023-37599
CVSS Score: 7.5
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Proof Of Concept
sahiloj
Directory Listing vulnerability in issabel-pbx 4.0.0-6 exposing application sensitive files
Refrence: GitHub