Directory Traversal vulnerability in FusionPBX 4.5.7, which allows a remote malicious user to delete folders on the system via the folder variable to app/edit/folderdelete.php.
Max CVSS
8.1
EPSS Score
0.08%
Published
2021-05-20
Updated
2021-05-25
Directory Traversal vulnerability exists in FusionPBX 4.5.7, which allows a remote malicious user to create folders via the folder variale to app\edit\foldernew.php.
Max CVSS
4.3
EPSS Score
0.06%
Published
2021-05-20
Updated
2021-05-25
A Directory Traversal vulnerability exists in FusionPBX 4.5.7 allows malicoius users to rename any file of the system.via the (1) folder, (2) filename, and (3) newfilename variables in app\edit\filerename.php.
Max CVSS
6.5
EPSS Score
0.06%
Published
2021-05-20
Updated
2021-05-25
In FusionPBX up to v4.5.7, the file app/music_on_hold/music_on_hold.php uses an unsanitized "file" variable coming from the URL, which takes any pathname (base64 encoded) and allows a download of it.
Max CVSS
6.5
EPSS Score
0.09%
Published
2019-10-21
Updated
2023-02-03
In FusionPBX up to v4.5.7, the file resources\download.php uses an unsanitized "f" variable coming from the URL, which takes any pathname and allows a download of it. (resources\secure_download.php is also affected.)
Max CVSS
6.5
EPSS Score
0.17%
Published
2019-10-21
Updated
2023-02-03
In FusionPBX up to v4.5.7, the file app\xml_cdr\xml_cdr_delete.php uses an unsanitized "rec" variable coming from the URL, which is base64 decoded and allows deletion of any file of the system.
Max CVSS
8.5
EPSS Score
0.06%
Published
2019-10-21
Updated
2023-02-03
6 vulnerabilities found