what you don't know can hurt you
Showing 1 - 25 of 36 RSS Feed

Files

FreePBX 2.9 Remote Command Execution
Posted Apr 27, 2013
Authored by Ahmed Aboul-Ela

FreePBX version 2.9 suffers from a backup module remote command execution vulnerability.

tags | exploit, remote
MD5 | 582fa2e5544c8c4da6487f4ceb1b05ba

Related Files

FreePBX Remote Code Execution
Posted Jan 9, 2017
Authored by inj3ctor3

FreePBX versions prior to 2.11.1.5 suffer from a code execution vulnerability.

tags | exploit, code execution
advisories | CVE-2014-7235
MD5 | f3850441d640136703932cffa446b99e
FreePBX 10.13.66 Remote Command Execution / Privilege Escalation
Posted Oct 22, 2016
Authored by Christopher Davis

FreePBX version 10.13.66 suffers from remote command execution and privilege escalation vulnerabilities.

tags | exploit, remote, vulnerability
MD5 | 61e8389a058ebd4116d22ee7eb90646f
FreePBX Remote Command Execution
Posted Sep 28, 2016
Authored by Ahmed Sultan

FreePBX versions prior to 13.0.188 remote root exploit.

tags | exploit, remote, root
MD5 | e1c2feb7864881500f580195e6ab94a0
FreePBX 13.0.x Code Execution
Posted Sep 7, 2016
Authored by i-Hmx

FreePBX versions prior to 13.0.154 suffer from a remote command execution vulnerability.

tags | exploit, remote
MD5 | e75ab8e263adf4c821b902a88cad819f
Freepbx 13.0.35 SQL Injection
Posted Aug 29, 2016
Authored by i-Hmx

Freepbx version 13.0.35 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 08bc4bcf06bf8561fc2b45634f781ee0
FreePBX 13.0.35 Remote Code Execution
Posted Aug 25, 2016
Authored by Ahmed Sultan

FreePBX version 13.0.35 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | e3dbeca6f9c10ffe4f3770bc6392da82
FreePBX 13 / 14 Remote Command Execution
Posted Aug 12, 2016
Authored by pgt | Site nullsecurity.net

FreePBX versions 13 and 14 remote command execution exploit.

tags | exploit, remote
MD5 | 1bbf97b2ef8e7ebce001f0932fa0119f
FreePBX 12.0.43 Cross Site Scripting
Posted Apr 22, 2015
Authored by High-Tech Bridge SA | Site htbridge.com

FreePBX version 12.0.43 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2015-2690
MD5 | 79cee98f92edb2ccaa42d7468d97b0b8
FreePBX Authentication Bypass / Account Creation
Posted Oct 1, 2014
Authored by Rob Thomas

A remote attacker can bypass authentication and create a false FreePBX Administrator account, which will then let them perform any action on a FreePBX system as the FreePBX user (which is often 'asterisk' or 'apache'). As of 2014/10/01 all versions of FreePBX are affected.

tags | advisory, remote, bypass
MD5 | be8e253ba1f0dd155fc81a0cab78d6ec
FreePBX config.php Remote Code Execution
Posted Mar 25, 2014
Authored by i-Hmx, 0x00string | Site metasploit.com

This Metasploit module exploits a vulnerability found in FreePBX version 2.9, 2.10, and 2.11. It's possible to inject arbitrary PHP functions and commands in the "/admin/config.php" parameters "function" and "args".

tags | exploit, arbitrary, php
advisories | CVE-2014-1903
MD5 | eb66aafbde2a7c0352575e1ef94440a5
FreePBX 2.x Remote Command Execution
Posted Feb 24, 2014
Authored by i-Hmx

FreePBX versions before 2.3 suffer from a remote command execution vulnerability.

tags | exploit, remote
MD5 | 38281d77aa25169073da8dd173ef9d70
FreePBX 2.9 Remote Code Execution
Posted Feb 14, 2014
Authored by Rob Thomas

FreePBX version 2.9 suffers from a remote code execution vulnerability.

tags | advisory, remote, code execution
advisories | CVE-2014-1903
MD5 | ea79ea9edf834d68a315e818dd90ed1a
FreePBX 2.x Code Execution
Posted Feb 11, 2014
Authored by i-Hmx

FreePBX 2.x suffers from a remote PHP code execution vulnerability due to a poor file validation methodology.

tags | advisory, remote, php, code execution
MD5 | 7ddfc02f5c58455311937c2f0fd2a496
Secunia Security Advisory 48475
Posted Mar 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been discovered in FreePBX, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | daed82e1fed7875bddf374891dfd289f
Secunia Security Advisory 48463
Posted Mar 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in FreePBX, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | eedaa8fa165ac1140705addd7de5fb55
FreePBX 2.10.0 / 2.9.0 callmenum Remote Code Execution
Posted Mar 26, 2012
Authored by muts | Site metasploit.com

This Metasploit module exploits FreePBX version 2.10.0,2.9.0 and possibly older. Due to the way callme_page.php handles the 'callmenum' parameter, it is possible to inject code to the '$channel' variable in function callme_startcall in order to gain remote code execution. Please note in order to use this module properly, you must know the extension number, which can be enumerated or bruteforced, or you may try some of the default extensions such as 0 or 200. Also, the call has to be answered (or go to voice). Tested on both Elastix and FreePBX ISO image installs.

tags | exploit, remote, php, code execution
MD5 | 44e25c24b624d2b2538fc4e1e7c41efc
FreePBX 2.10.0 / Elastic 2.2.0 Remote Code Execution
Posted Mar 23, 2012
Authored by muts

FreePBX version 2.10.0 and Elastic version 2.2.0 remote root code execution exploit.

tags | exploit, remote, root, code execution
MD5 | ae2de3d3720dc24c566dbcd306379f08
FreePBX 2.10.0 Remote Command Execution / XSS
Posted Mar 21, 2012
Authored by Martin Tschirsich

FreePBX versions 2.10.0, 2.9.0, and perhaps earlier versions suffer from cross site scripting and remote code execution vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss
MD5 | 628e1f8f675fd98f58bcf89cb8a4bc5e
FreePBX Credential Disclosure
Posted Feb 15, 2012
Authored by Doug W

FreePBX suffers from a remote credential disclosure vulnerability via the web interface.

tags | exploit, remote, web, info disclosure
MD5 | efdc1ed016f2470c90103ddca9c5b00d
FreePBX 2.9.0.6 Shell Upload
Posted Jun 9, 2011
Authored by Tiago Ferreira

FreePBX version 2.9.0.6 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 6b94049bbc627fffc65881801ecfc7f7
Secunia Security Advisory 41556
Posted Sep 27, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in FreePBX, which can be exploited by malicious users to compromise a vulnerable system.

tags | advisory
MD5 | 845ed6a5651ebcab139b6e5e17cf1340
FreePBX 2.8.0 Code Execution
Posted Sep 24, 2010
Authored by Trustwave | Site trustwave.com

FreePBX versions 2.8.0 and below suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2010-3490
MD5 | cb5cb33f8f49b55305355e9f6eae3add
Secunia Security Advisory 41558
Posted Sep 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been discovered in FreePBX, which can be exploited by malicious users and malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | 6cf74907cf76d568f1dc3e61a64f39bd
Secunia Security Advisory 38300
Posted Jan 25, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in FreePBX, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory
MD5 | 75bfc43d1ba03dd119e28d62791b9dbb
Secunia Security Advisory 38299
Posted Jan 25, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in FreePBX, which can be exploited by malicious users to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | 30c4962d4ccb93b1a94caa57cf1e62d5
Page 1 of 2
Back12Next

File Archive:

June 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    35 Files
  • 2
    Jun 2nd
    14 Files
  • 3
    Jun 3rd
    40 Files
  • 4
    Jun 4th
    22 Files
  • 5
    Jun 5th
    1 Files
  • 6
    Jun 6th
    1 Files
  • 7
    Jun 7th
    19 Files
  • 8
    Jun 8th
    14 Files
  • 9
    Jun 9th
    39 Files
  • 10
    Jun 10th
    20 Files
  • 11
    Jun 11th
    22 Files
  • 12
    Jun 12th
    2 Files
  • 13
    Jun 13th
    1 Files
  • 14
    Jun 14th
    32 Files
  • 15
    Jun 15th
    34 Files
  • 16
    Jun 16th
    9 Files
  • 17
    Jun 17th
    33 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close