Vendor
medium
threat
FreePBX Security Advisories for Security-Reporting Module Vulnerabilities
2 rules 1 TTPFreePBX released security advisories addressing authenticated SQL injection and local file inclusion vulnerabilities in the Security-Reporting cdr and dashboard modules for FreePBX 16 and 17.
Security-Reporting cdr +3
freepbx
sql_injection
lfi
vulnerability
2r
1t
critical
advisory
FreePBX Security-Reporting userman Unauthenticated Hard-Coded Credentials Vulnerability
2 rulesFreePBX Security-Reporting userman versions 16.0.45 and prior (FreePBX 16) and 17.0.7 and prior (FreePBX 17) contain a critical vulnerability due to unauthenticated use of hard-coded credentials in the UCP interface, potentially allowing unauthorized access.
FreePBX Security-Reporting userman +1
freepbx
hardcoded-credentials
voip
2r