RSS   Vulnerabilities for 'Freepbx'   RSS

2007-03-03
 
CVE-2006-7107

 

 
PHP remote file inclusion vulnerability in upgrade.php in Coalescent Systems freePBX 2.1.3 allows remote attackers to execute arbitrary PHP code via a URL in the amp_conf[AMPWEBROOT] parameter.

 
2006-12-04
 
CVE-2006-6244

 

 
Coalescent Systems freePBX (formerly Asterisk Management Portal) before 2.2.0rc1 allows attackers to execute arbitrary commands via shell metacharacters in (1) CALLERID(name) or (2) CALLERID(number).

 


Copyright 2024, cxsecurity.com

 

Back to Top