Freepbx@2.9 Security Vulnerabilities and Issues — Freepbx@2.9 CVE List

Lucene search

SangomaFreepbx2.9

2 matches found

CVE•added 2012/09/06 5:55 p.m.•180 views

CVE-2012-4869

The callme_startcall function in recordings/misc/callme_page.php in FreePBX 2.9, 2.10, and earlier allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action.

7.5CVSS7.7AI score0.84867EPSS

CVE•added 2014/02/18 11:55 a.m.•57 views

CVE-2014-1903

admin/libraries/view.functions.php in FreePBX 2.9 before 2.9.0.14, 2.10 before 2.10.1.15, 2.11 before 2.11.0.23, and 12 before 12.0.1alpha22 does not restrict the set of functions accessible to the API handler, which allows remote attackers to execute arbitrary PHP code via the function and args pa...

7.5CVSS7.5AI score0.83709EPSS