Lucene search
K

4 matches found

NVD
NVD
added 2025/10/14 8:15 p.m.30 views

CVE-2025-59429

FreePBX is an open source GUI for managing Asterisk. In versions prior to 16.0.68.39 for FreePBX 16 and versions prior to 17.0.18.38 for FreePBX 17, a reflected cross-site scripting vulnerability is present on the Asterisk HTTP Status page. The Asterisk HTTP status page is exposed by FreePBX and ...

8.5CVSS0.0018EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/10/14 7:26 p.m.3 views

CVE-2025-59429

FreePBX is an open source GUI for managing Asterisk. In versions prior to 16.0.68.39 for FreePBX 16 and versions prior to 17.0.18.38 for FreePBX 17, a reflected cross-site scripting vulnerability is present on the Asterisk HTTP Status page. The Asterisk HTTP status page is exposed by FreePBX and ...

8.5CVSS5.1AI score0.0018EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/10/14 7:26 p.m.22 views

CVE-2025-59429

CVE-2025-59429 affects FreePBX core: reflected XSS on the Asterisk HTTP Status page. Affected: FreePBX 16 < 16.0.68.39 (port 8088 exposed by default) and FreePBX 17

8.5CVSS6AI score0.0018EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/10/14 7:26 p.m.24 views

CVE-2025-59429 FreePBX core module vulnerable to reflected cross-site scripting via Asterisk HTTP Status page

FreePBX is an open source GUI for managing Asterisk. In versions prior to 16.0.68.39 for FreePBX 16 and versions prior to 17.0.18.38 for FreePBX 17, a reflected cross-site scripting vulnerability is present on the Asterisk HTTP Status page. The Asterisk HTTP status page is exposed by FreePBX and ...

8.5CVSS0.0018EPSS
Exploits0References1
Rows per page
Query Builder