Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface on the central phone server for the Snom 320 SIP Phone allow remote malicious users to perform actions as the phone user, as demonstrated by inserting an address-book entry containing an XSS sequence.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
snom 320 sip phone |