Fusionpbx

fusionpbx

52 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (52)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-16983 1Fusionpbx 1Fusionpbx Nov 21, 2024 Oct 21, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 In FusionPBX up to v4.5.7, the file resources\paging.php has a paging function (called by several pages of the interface), which uses an unsanitized "param" variable constructed partially from the URL args and reflected...Show more In FusionPBX up to v4.5.7, the file resources\paging.php has a paging function (called by several pages of the interface), which uses an unsanitized "param" variable constructed partially from the URL args and reflected in HTML, leading to XSS.Show less
CVE-2019-16982 1Fusionpbx 1Fusionpbx Nov 21, 2024 Oct 21, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 In FusionPBX up to v4.5.7, the file app\access_controls\access_control_nodes.php uses an unsanitized "id" variable coming from the URL, which is reflected in HTML, leading to XSS.
CVE-2019-16981 1Fusionpbx 1Fusionpbx Nov 21, 2024 Oct 21, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 In FusionPBX up to v4.5.7, the file app\conference_profiles\conference_profile_params.php uses an unsanitized "id" variable coming from the URL, which is reflected on 2 occasions in HTML, leading to XSS.
CVE-2019-16990 1Fusionpbx 1Fusionpbx Nov 21, 2024 Oct 21, 2019 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 In FusionPBX up to v4.5.7, the file app/music_on_hold/music_on_hold.php uses an unsanitized "file" variable coming from the URL, which takes any pathname (base64 encoded) and allows a download of it.
CVE-2019-16980 1Fusionpbx 1Fusionpbx Nov 21, 2024 Oct 21, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 In FusionPBX up to v4.5.7, the file app\call_broadcast\call_broadcast_edit.php uses an unsanitized "id" variable coming from the URL in an unparameterized SQL query, leading to SQL injection.
CVE-2019-16979 1Fusionpbx 1Fusionpbx Nov 21, 2024 Oct 21, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 In FusionPBX up to v4.5.7, the file app\contacts\contact_urls.php uses an unsanitized "id" variable coming from the URL, which is reflected in HTML, leading to XSS.
CVE-2019-16978 1Fusionpbx 1Fusionpbx Nov 21, 2024 Oct 21, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 In FusionPBX up to v4.5.7, the file app\devices\device_settings.php uses an unsanitized "id" variable coming from the URL, which is reflected on 2 occasions in HTML, leading to XSS.
CVE-2019-15029 1Fusionpbx 1Fusionpbx Nov 21, 2024 Sep 5, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 FusionPBX 4.4.8 allows an attacker to execute arbitrary system commands by submitting a malicious command to the service_edit.php file (which will insert the malicious command into the database). To trigger the command,...Show more FusionPBX 4.4.8 allows an attacker to execute arbitrary system commands by submitting a malicious command to the service_edit.php file (which will insert the malicious command into the database). To trigger the command, one needs to call the services.php file via a GET request with the service id followed by the parameter a=start to execute the stored command.Show less
CVE-2019-11410 1Fusionpbx 1Fusionpbx Nov 21, 2024 Jun 17, 2019 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 app/backup/index.php in the Backup Module in FusionPBX 4.4.3 suffers from a command injection vulnerability due to a lack of input validation, which allows authenticated administrative attackers to execute commands on th...Show more app/backup/index.php in the Backup Module in FusionPBX 4.4.3 suffers from a command injection vulnerability due to a lack of input validation, which allows authenticated administrative attackers to execute commands on the host.Show less
CVE-2019-11409 1Fusionpbx 1Fusionpbx Nov 21, 2024 Jun 17, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 app/operator_panel/exec.php in the Operator Panel module in FusionPBX 4.4.3 suffers from a command injection vulnerability due to a lack of input validation that allows authenticated non-administrative attackers to execu...Show more app/operator_panel/exec.php in the Operator Panel module in FusionPBX 4.4.3 suffers from a command injection vulnerability due to a lack of input validation that allows authenticated non-administrative attackers to execute commands on the host. This can further lead to remote code execution when combined with an XSS vulnerability also present in the FusionPBX Operator Panel module.Show less
CVE-2019-11408 1Fusionpbx 1Fusionpbx Nov 21, 2024 Jun 17, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 XSS in app/operator_panel/index_inc.php in the Operator Panel module in FusionPBX 4.4.3 allows remote unauthenticated attackers to inject arbitrary JavaScript characters by placing a phone call using a specially crafted...Show more XSS in app/operator_panel/index_inc.php in the Operator Panel module in FusionPBX 4.4.3 allows remote unauthenticated attackers to inject arbitrary JavaScript characters by placing a phone call using a specially crafted caller ID number. This can further lead to remote code execution by chaining this vulnerability with a command injection vulnerability also present in FusionPBX.Show less
CVE-2019-11407 1Fusionpbx 1Fusionpbx Nov 21, 2024 Jun 17, 2019 N/A· v4 7.2 HIGH· v3 4.0 MEDIUM· v2 app/operator_panel/index_inc.php in the Operator Panel module in FusionPBX 4.4.3 suffers from an information disclosure vulnerability due to excessive debug information, which allows authenticated administrative attacker...Show more app/operator_panel/index_inc.php in the Operator Panel module in FusionPBX 4.4.3 suffers from an information disclosure vulnerability due to excessive debug information, which allows authenticated administrative attackers to obtain credentials and other sensitive information.Show less