[CLOSE] OSVDB ID : 80543 - Disclosed: 2012-03-22

Description:

FreePBX contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'login' parameter upon submission to the /recordings/index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 54262 - Disclosed: 2009-05-06

Description:

(Description Provided by CVE) : Multiple cross-site request forgery (CSRF) vulnerabilities in FreePBX 2.5.1, and other 2.4.x, 2.5.x, and pre-release 2.6.x versions, allow remote attackers to hijack the authentication of admins for requests that create a new admin account or have unspecified other impact.

[CLOSE] OSVDB ID : 61918 - Disclosed: 2010-01-15

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 35316 - Disclosed: 2007-04-21

Description:

A remote command execution vulnerability exists in the Music On Hold module of the FreePBX 2.2.x web admin interface.

[CLOSE] OSVDB ID : 61919 - Disclosed: 2010-01-15

Description:

FreePBX contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin/config.php' script not properly sanitizing user-supplied input to the 'extdisplay' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 68181 - Disclosed: 2010-09-21

Description:

FreePBX contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin/config.php' script not properly sanitizing user-supplied input to the 'src', 'dst', and 'channel' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 61357 - Disclosed: 2009-12-24

Description:

FreePBX contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'tech' parameter upon submission to the 'admin/config.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 92856 - Disclosed: 2013-04-27

Description:

FreePBX contains a flaw in the Backup module that is due to the program failing to properly sanitize commands that begin with a single quote character passed via the 'dir' parameter to the page.backup.php file. This may allow a remote attacker to bypass the protections provided by the strpos() function and execute arbitrary commands.

[CLOSE] OSVDB ID : 72659 - Disclosed: 2010-09-21

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 30783 - Disclosed: 2006-11-27

Description:

(Description Provided by CVE) : Coalescent Systems freePBX (formerly Asterisk Management Portal) before 2.2.0rc1 allows attackers to execute arbitrary commands via shell metacharacters in (1) CALLERID(name) or (2) CALLERID(number).

[CLOSE] OSVDB ID : 80544 - Disclosed: 2012-03-22

Description:

FreePBX contains a flaw related to the callme_page.php script. The issue is triggered when input passed via the 'callmenum' parameter is not properly sanitized. This may allow a remote attacker to execute arbitrary shell commands.

[CLOSE] OSVDB ID : 52727 - Disclosed: 2007-10-20

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 54260 - Disclosed: 2009-05-06

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.5.1, and other 2.4.x, 2.5.x, and pre-release 2.6.x versions, allow remote attackers to inject arbitrary web script or HTML via the (1) display parameter to reports.php, the (2) order and (3) extdisplay parameters to config.php, and the (4) sort parameter to recordings/index.php. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 80367 - Disclosed: 2011-02-25

Description:

FreePBX contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the $type, $action, $old_custom_dest, and $custom_dest parameters upon submission to the config.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 61920 - Disclosed: 2010-01-15

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 80539 - Disclosed: 2012-03-22

Description:

FreePBX contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'context' parameter upon submission to the index_amp.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 80357 - Disclosed: 2010-11-26

Description:

FreePBX contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the rendering of HTML in the log file. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 35315 - Disclosed: 2007-04-19

Description:

Persistent cross site scripting is possible in FreePBX 2.2.x due to no escaping of html code in the Log monitor module for the admin web interface.

[CLOSE] OSVDB ID : 54263 - Disclosed: 2009-05-06

Description:

(Description Provided by CVE) : FreePBX 2.5.1, and other 2.4.x, 2.5.x, and pre-release 2.6.x versions, generates different error messages for a failed login attempt depending on whether the user account exists, which allows remote attackers to enumerate valid usernames.

[CLOSE] OSVDB ID : 54261 - Disclosed: 2009-05-06

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.5.1, and other 2.4.x, 2.5.x, and pre-release 2.6.x versions, allow remote attackers to inject arbitrary web script or HTML via the (1) display parameter to reports.php, the (2) order and (3) extdisplay parameters to config.php, and the (4) sort parameter to recordings/index.php. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 54259 - Disclosed: 2009-05-06

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.5.1, and other 2.4.x, 2.5.x, and pre-release 2.6.x versions, allow remote attackers to inject arbitrary web script or HTML via the (1) display parameter to reports.php, the (2) order and (3) extdisplay parameters to config.php, and the (4) sort parameter to recordings/index.php. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 68240 - Disclosed: 2010-09-23

Description:

(Description Provided by CVE) : Directory traversal vulnerability in page.recordings.php in the System Recordings component in the configuration interface in FreePBX 2.8.0 and earlier allows remote authenticated administrators to create arbitrary files via a .. (dot dot) in the usersnum parameter to admin/config.php, as demonstrated by creating a .php file under the web root.

[CLOSE] OSVDB ID : 34694 - Disclosed: 2006-10-28

Description:

freePBX contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'upgrade.php' script not properly sanitizing user input supplied to the 'amp_conf[AMPWEBROOT]' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 61358 - Disclosed: 2009-12-24

Description:

FreePBX contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'Description' parameter upon submission to the 'Zap Channel Addition' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 63558 - Disclosed: 2010-04-06

Description:

FreePHPBlogSoftware contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'default_theme.php' script not properly sanitizing user input supplied to the 'phpincdir' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 41587 - Disclosed: 2008-02-14

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in freePHPgallery 0.6 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang cookie to (1) comment.php, (2) index.php, and (3) show.php.

[CLOSE] OSVDB ID : 41588 - Disclosed: 2008-02-14

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in freePHPgallery 0.6 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang cookie to (1) comment.php, (2) index.php, and (3) show.php.

[CLOSE] OSVDB ID : 41589 - Disclosed: 2008-02-14

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in freePHPgallery 0.6 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang cookie to (1) comment.php, (2) index.php, and (3) show.php.

[CLOSE] OSVDB ID : 82894 - Disclosed: 2012-06-10

Description:

FreePost contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the edit.php script not properly sanitizing user-supplied input to the 'post' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 82895 - Disclosed: 2012-06-10

Description:

FreePost contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the text body upon submission to the edit.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.