FreePBX callmenum Remote Code Execution (CVE-2012-4869)

FreePBX is an open source software implementation of a telephone Private Branch eXchange PBX. A code execution vulnerability exists in FreePBX software. Remote attacker can exploit this vulnerability to inject arbitrary PHP functions and commands...

CVE-2012-4869

The callmestartcall function in recordings/misc/callmepage.php in FreePBX 2.9, 2.10, and earlier allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action...

CVE-2012-4869

CVE-2012-4869 is an RCE vulnerability in FreePBX where the callme_startcall function in recordings/misc/callme_page.php allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action, affecting FreePBX 2.9 and earlier. Exploitation details and impact are supported...

CVE-2012-4869

The callmestartcall function in recordings/misc/callmepage.php in FreePBX 2.9, 2.10, and earlier allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

CVE-2012-4869

creationtimestamp| type| source ---|---|--- 2012-03-22 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18649 2012-03-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18650 2012-03-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18659 2018-05-29...