Lucene search
K

8 matches found

0day.today
0day.today
added 2016/10/22 12:0 a.m.53 views

FreePBX 10.13.66 Remote Command Execution / Privilege Escalation Exploit

Exploit for php platform in category remote exploits !/usr/bin/env python ''' Title | FreePBX 13 Remote Command Execution and Privilege Escalation Date | 10/21/2016 Author | Christopher Davis Vendor | https://www.freepbx.org/ Version | FreePBX 13 & 14 System Recordings Module versions: 13.0.1beta...

7.1AI score
Exploits0
Saint
Saint
added 2016/10/14 12:0 a.m.573 views

FreePBX Recordings Backdoor Upload

Added: 10/14/2016 Background FreePBX is a web-based open-source graphical user interface used to manage Asterisk PBX, an open-source communication server. The FreePBX System Recordings module allows playback of recorded files. Problem The System Recordings module in FreePBX 13 and 14 is vulnerabl...

8.1AI score
Exploits0
Saint
Saint
added 2016/10/14 12:0 a.m.770 views

FreePBX Recordings Backdoor Upload

Added: 10/14/2016 Background FreePBX is a web-based open-source graphical user interface used to manage Asterisk PBX, an open-source communication server. The FreePBX System Recordings module allows playback of recorded files. Problem The System Recordings module in FreePBX 13 and 14 is vulnerabl...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2016/08/12 12:0 a.m.39 views

FreePBX 13/14 - Remote Command Execution / Privilege Escalation

!/usr/bin/env python -- coding, latin-1 -- DESCRIPTION FreePBX 13 remote root 0day - Found and exploited by pgt @ nullsecurity.net AUTHOR pgt - nullsecurity.net DATE 8-12-2016 VERSION freepbx0day.py 0.1 AFFECTED VERSIONS FreePBX 13 & 14 System Recordings Module versions: 13.0.1beta1 - 13.0.26 STA...

7.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/11/03 12:0 a.m.5 views

FreePBX Recording Interface File Upload Code Execution (CVE-2010-3490)

FreePBX is an open source software implementation of a telephone Private Branch eXchange PBX. It allows a number of attached telephones to make calls to one another, and to connect to other telephone services including the public switched telephone network. A code execution vulnerability exists i...

6.5CVSS7.7AI score0.09566EPSS
Exploits5
Prion
Prion
added 2010/09/28 6:0 p.m.13 views

Directory traversal

Directory traversal vulnerability in page.recordings.php in the System Recordings component in the configuration interface in FreePBX 2.8.0 and earlier allows remote authenticated administrators to create arbitrary files via a .. dot dot in the usersnum parameter to admin/config.php, as...

6.5CVSS6.7AI score0.09566EPSS
Exploits5References5Affected Software1
Cvelist
Cvelist
added 2010/09/28 5:0 p.m.34 views

CVE-2010-3490

Directory traversal vulnerability in page.recordings.php in the System Recordings component in the configuration interface in FreePBX 2.8.0 and earlier allows remote authenticated administrators to create arbitrary files via a .. dot dot in the usersnum parameter to admin/config.php, as...

6.2AI score0.09566EPSS
Exploits5References5
CVE
CVE
added 2010/09/28 5:0 p.m.68 views

CVE-2010-3490

CVE-2010-3490 affects FreePBX

6.5CVSS6.3AI score0.09566EPSS
Exploits5References5Affected Software1
Rows per page
Query Builder