Lucene search
K

7 matches found

Circl
Circl
added 2020/11/05 4:55 p.m.17 views

CVE-2014-7235

creationtimestamp| type| source ---|---|--- 2020-11-05 16:55:13+00:00| seen| MISP/9fbd6001-b34c-4886-8240-d3e93a433faf 2020-11-05 19:44:38+00:00| seen| MISP/77f74cbc-dd0e-4c6e-a9c4-f15e1a87c0f9 2020-11-05 19:44:38+00:00| seen| MISP/d60bbf52-1b06-4ddd-b894-c1da7f68f083 2020-11-05 19:44:39+00:00|...

10CVSS6AI score0.4299EPSS
Exploits4References2
0day.today
0day.today
added 2017/01/11 12:0 a.m.197 views

Freepbx 2.11.1.5 - Remote Code Execution Vulnerability

Exploit for php platform in category web applications Exploit Title: Freepbx coockie recordings injection Google Dork: Ask Santa Date: 23/12/2016 Exploit Author: inj3ctor3 Vendor Homepage: https://www.freepbx.org/ Software Link: ISO LINKS IN SITE https://www.freepbx.org/ Version: ALL && unpatched...

10CVSS9.2AI score0.4299EPSS
Exploits4
Packet Storm
Packet Storm
added 2017/01/09 12:0 a.m.163 views

FreePBX Remote Code Execution

Exploit Title: Freepbx coockie recordings injection Google Dork: Ask Santa Date: 23/12/2016 Exploit Author: inj3ctor3 Vendor Homepage: https://www.freepbx.org/ Software Link: ISO LINKS IN SITE https://www.freepbx.org/ Version: ALL && unpatched/ Trixbox/freepbx/elastix/pbxinflash/ Tested on: Cento...

10CVSS9.6AI score0.4299EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/12/23 12:0 a.m.252 views

Freepbx < 2.11.1.5 - Remote Code Execution

Exploit Title: Freepbx coockie recordings injection Google Dork: Ask Santa Date: 23/12/2016 Exploit Author: inj3ctor3 Vendor Homepage: https://www.freepbx.org/ Software Link: ISO LINKS IN SITE https://www.freepbx.org/ Version: ALL && unpatched/ Trixbox/freepbx/elastix/pbxinflash/ Tested on: Cento...

10CVSS9.6AI score0.4299EPSS
Exploits4
exploitpack
exploitpack
added 2016/12/23 12:0 a.m.96 views

Freepbx 2.11.1.5 - Remote Code Execution

Freepbx 2.11.1.5 - Remote Code Execution Exploit Title: Freepbx coockie recordings injection Google Dork: Ask Santa Date: 23/12/2016 Exploit Author: inj3ctor3 Vendor Homepage: https://www.freepbx.org/ Software Link: ISO LINKS IN SITE https://www.freepbx.org/ Version: ALL && unpatched/...

10CVSS9.8AI score0.4299EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2015/02/05 12:0 a.m.1146 views

FreePBX /recordings/index.php 'ari_auth' Cookie Authentication Bypass

The version of FreePBX hosted on the remote web server is affected by an authentication bypass vulnerability in the FreePBX ARI Framework module / Asterisk Recording Interface ARI. A remote, unauthenticated attacker can exploit this issue to gain full administrator access to the FreePBX server by...

10CVSS6.5AI score0.4299EPSS
Exploits4References3
NVD
NVD
added 2014/10/07 2:55 p.m.29 views

CVE-2014-7235

htdocsari/includes/login.php in the ARI Framework module/Asterisk Recording Interface ARI in FreePBX before 2.9.0.9, 2.10.x, and 2.11 before 2.11.1.5 allows remote attackers to execute arbitrary code via the ariauth cookie, related to the PHP unserialize function, as exploited in the wild in...

10CVSS7.7AI score0.4299EPSS
Exploits4References7
Rows per page
Query Builder