FreePBX information leakage

It's possible to obtain extensions passwords via genampconf.php...

FreePBX 'gen_amp_conf.php' Credentials Information Disclosure Vulnerability

FreePBX is prone to an information-disclosure vulnerability that may expose administrator's credentials. Successful exploits will allow unauthenticated attackers to obtain sensitive information that may aid in further attacks. OpenVAS Vulnerability Test $Id: gbfreepbx52048.nasl 6720 2017-07-13...