Every CVE whose affected-product data names Palosanto Elastix, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2015-1875 — CVSS 7.5 (high): SQL injection vulnerability in a2billing/customer/iridium_threed.php in Elastix 2.5.0 and earlier allows remote attackers to execute…
CVE-2010-1492 — CVSS 5.0 (medium): Directory traversal vulnerability in help/frameRight.php in Elastix 1.6.0 allows remote attackers to read arbitrary files via a .. (dot…