Product
fusionpbx
52 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-24539
CVE-2024-23387
CVE-2021-43403
CVE-2022-35153
CVE-2021-37524
CVE-2022-28055
CVE-2021-43406
CVE-2021-43405
CVE-2021-43404
CVE-2020-21057
CVE-2020-21056
CVE-2020-21055
CVE-2020-21054
CVE-2020-21053
CVE-2019-19388
CVE-2019-19387
CVE-2019-19386
CVE-2019-19385
CVE-2019-19384
CVE-2019-19367
CVE-2019-19366
CVE-2019-16977
CVE-2019-16975
CVE-2019-16976
CVE-2019-16973
CVE-2019-16972
CVE-2019-16971
CVE-2019-16974
CVE-2019-16969
CVE-2019-16970
CVE-2019-16968
CVE-2019-16965
CVE-2019-16964
CVE-2019-16991
CVE-2019-16989
CVE-2019-16988
CVE-2019-16987
CVE-2019-16986
CVE-2019-16985
CVE-2019-16984
CVE-2019-16983
CVE-2019-16982
CVE-2019-16981
CVE-2019-16990
CVE-2019-16980
CVE-2019-16979
CVE-2019-16978
CVE-2019-15029
CVE-2019-11410
CVE-2019-11409
CVE-2019-11408
CVE-2019-11407
< 5.2.0
FusionPBX before 5.2.0 does not validate a session.
< 5.1.0
FusionPBX prior to 5.1.0 contains a cross-site scripting vulnerability. If this vulnerability is exploited by a remote authenticat
< 4.5.30
An issue was discovered in FusionPBX before 4.5.30. The log_viewer.php Log View page allows an authenticated user to choose an arb
all versions
FusionPBX 5.0.1 was discovered to contain a command injection vulnerability via /fax/fax_send.php.
< 5.0.1
Cross Site Scripting (XSS) vulnerability in FusionPBX 4.5.26 allows remote unauthenticated users to inject arbitrary web script or
<= 4.4.0
Fusionpbx v4.4 and below contains a command injection vulnerability via the download email logs function.
< 4.5.30
An issue was discovered in FusionPBX before 4.5.30. The fax_post_size may have risky characters (it is not constrained to preset v
< 4.5.30
An issue was discovered in FusionPBX before 4.5.30. The fax_extension may have risky characters (it is not constrained to be numer
< 4.5.30
An issue was discovered in FusionPBX before 4.5.30. The FAX file name may have risky characters.
all versions
Directory Traversal vulnerability in FusionPBX 4.5.7, which allows a remote malicious user to delete folders on the system via the
all versions
Directory Traversal vulnerability exists in FusionPBX 4.5.7, which allows a remote malicious user to create folders via the folder
all versions
A Directory Traversal vulnerability exists in FusionPBX 4.5.7 allows malicoius users to rename any file of the system.via the (1)
all versions
Cross Site Scripting (XSS) vulnerability in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML v
all versions
Cross Site Scriptiong (XSS) vulnerability exists in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script o
all versions
A cross-site scripting (XSS) vulnerability in app/dialplans/dialplan_detail_edit.php in FusionPBX 4.4.1 allows remote attackers to
all versions
A cross-site scripting (XSS) vulnerability in app/fifo_list/fifo_interactive.php in FusionPBX 4.4.1 allows remote attackers to inj
all versions
A cross-site scripting (XSS) vulnerability in app/voicemail_greetings/voicemail_greeting_edit.php in FusionPBX 4.4.1 allows remote
all versions
A cross-site scripting (XSS) vulnerability in app/dialplans/dialplans.php in FusionPBX 4.4.1 allows remote attackers to inject arb
all versions
A cross-site scripting (XSS) vulnerability in app/fax/fax_log_view.php in FusionPBX 4.4.1 allows remote attackers to inject arbitr
all versions
A cross-site scripting (XSS) vulnerability in app/fax/fax_files.php in FusionPBX 4.4.1 allows remote attackers to inject arbitrary
all versions
A cross-site scripting (XSS) vulnerability in app/xml_cdr/xml_cdr_search.php in FusionPBX 4.4.1 allows remote attackers to inject
<= 4.5.7
In FusionPBX up to 4.5.7, the file app\extensions\extension_imports.php uses an unsanitized "query_string" variable coming from th
<= 4.5.7
In FusionPBX up to 4.5.7, the file app\contacts\contact_notes.php uses an unsanitized "id" variable coming from the URL, which is
<= 4.5.7
In FusionPBX up to 4.5.7, the file app\destinations\destination_imports.php uses an unsanitized "query_string" variable coming fro
<= 4.5.7
In FusionPBX up to 4.5.7, the file app\contacts\contact_edit.php uses an unsanitized "query_string" variable coming from the URL,
<= 4.5.7
In FusionPBX up to 4.5.7, the file app\contacts\contact_addresses.php uses an unsanitized "id" variable coming from the URL, which
<= 4.5.7
In FusionPBX up to 4.5.7, the file app\messages\messages_thread.php uses an unsanitized "contact_uuid" variable coming from the UR
<= 4.5.7
In FusionPBX up to 4.5.7, the file app\contacts\contact_times.php uses an unsanitized "id" variable coming from the URL, which is
<= 4.5.7
In FusionPBX up to 4.5.7, the file app\fifo_list\fifo_interactive.php uses an unsanitized "c" variable coming from the URL, which
<= 4.5.7
In FusionPBX up to 4.5.7, the file app\sip_status\sip_status.php uses an unsanitized "savemsg" variable coming from the URL, which
<= 4.5.7
An issue was discovered in FusionPBX up to 4.5.7. In the file app\conference_controls\conference_control_details.php, an unsanitiz
<= 4.5.7
resources/cmd.php in FusionPBX up to 4.5.7 suffers from a command injection vulnerability due to a lack of input validation, which
<= 4.5.7
app/call_centers/cmd.php in the Call Center Queue Module in FusionPBX up to 4.5.7 suffers from a command injection vulnerability d
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\edit\filedelete.php uses an unsanitized "file" variable coming from the URL, which is refl
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\conferences_active\conference_interactive.php uses an unsanitized "c" variable coming from
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\basic_operator_panel\resources\content.php uses an unsanitized "eavesdrop_dest" variable c
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\contacts\contact_import.php uses an unsanitized "query_string" variable coming from the UR
<= 4.5.7
In FusionPBX up to v4.5.7, the file resources\download.php uses an unsanitized "f" variable coming from the URL, which takes any p
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\xml_cdr\xml_cdr_delete.php uses an unsanitized "rec" variable coming from the URL, which i
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\recordings\recording_play.php uses an unsanitized "filename" variable coming from the URL,
<= 4.5.7
In FusionPBX up to v4.5.7, the file resources\paging.php has a paging function (called by several pages of the interface), which u
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\access_controls\access_control_nodes.php uses an unsanitized "id" variable coming from the
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\conference_profiles\conference_profile_params.php uses an unsanitized "id" variable coming
<= 4.5.7
In FusionPBX up to v4.5.7, the file app/music_on_hold/music_on_hold.php uses an unsanitized "file" variable coming from the URL, w
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\call_broadcast\call_broadcast_edit.php uses an unsanitized "id" variable coming from the U
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\contacts\contact_urls.php uses an unsanitized "id" variable coming from the URL, which is
<= 4.5.7
In FusionPBX up to v4.5.7, the file app\devices\device_settings.php uses an unsanitized "id" variable coming from the URL, which i
all versions
FusionPBX 4.4.8 allows an attacker to execute arbitrary system commands by submitting a malicious command to the service_edit.php
all versions
app/backup/index.php in the Backup Module in FusionPBX 4.4.3 suffers from a command injection vulnerability due to a lack of input
all versions
app/operator_panel/exec.php in the Operator Panel module in FusionPBX 4.4.3 suffers from a command injection vulnerability due to
all versions
XSS in app/operator_panel/index_inc.php in the Operator Panel module in FusionPBX 4.4.3 allows remote unauthenticated attackers to
all versions
app/operator_panel/index_inc.php in the Operator Panel module in FusionPBX 4.4.3 suffers from an information disclosure vulnerabil