CVE-2023-43336

Sangoma Technologies FreePBX before cdr 15.0.18, 16.0.40, 15.0.16, and 16.0.17 was discovered to contain an access control issue via a modified parameter value, e.g., changing extension=self to extension=101...

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

Multiple security vulnerabilities have been disclosed in the open-source private branch exchange PBX platform FreePBX, including a critical flaw that could result in an authentication bypass under certain configurations. The shortcomings, discovered by Horizon3.ai and reported to the project...

EUVD-2019-8659

Malware in sbrugna...

EUVD-2006-6227

Malware in sbrugna...

EUVD-2007-2345

Malware in sbrugna...

EUVD-2009-1798

Malware in sbrugna...

CVE-2009-1803

FreePBX 2.5.1, and other 2.4.x, 2.5.x, and pre-release 2.6.x versions, generates different error messages for a failed login attempt depending on whether the user account exists, which allows remote attackers to enumerate valid usernames...

PT-2023-28158 · Freepbx · Freepbx

Name of the Vulnerable Software and Affected Versions: FreePBX affected versions not specified Description: A security issue has been identified in Endpoint Manager and Rest Apps of FreePBX. The estimated number of potentially affected devices worldwide is not specified. There is no information...

FreePBX 2.5.1 - SQL injection

No description provided by source...