AI description
CVE-2025-61678 is an authenticated arbitrary file upload vulnerability that exists in the FreePBX Endpoint Manager module. It affects versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17. The vulnerability is located in the `fwbrand` parameter, which allows an attacker to manipulate the file path. By exploiting this vulnerability, an authenticated user can upload arbitrary files to attacker-controlled paths on the server. This can potentially lead to the upload of a webshell and subsequent remote code execution. Authentication with a known username is required to exploit this vulnerability.
- Description
- FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. In versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17, the Endpoint Manager module contains an authenticated arbitrary file upload vulnerability affecting the fwbrand parameter. The fwbrand parameter allows an attacker to change the file path. Combined, these issues can result in a webshell being uploaded. Authentication with a known username is required to exploit this vulnerability. Successful exploitation allows authenticated users to upload arbitrary files to attacker-controlled paths on the server, potentially leading to remote code execution. This issue has been patched in version 16.0.92 for FreePBX 16 and version 17.0.6 for FreePBX 17.
- Source
- security-advisories@github.com
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 8.6
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
- security-advisories@github.com
- CWE-434
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
27
๐จ New Security Research Disclosure ๐จ Iโve published a repository documenting multiple critical vulnerabilities in FreePBX (2025), including: ๐น CVE-2025-66039 ๐น CVE-2025-61678 ๐น CVE-2025-61675 ๐ GitHub: https://t.co/Uknsy9ESK8 #InfoSec #cyberleelawat #CVE #Free
@cyberleelawat
16 Dec 2025
5 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
๐จAlert๐จ CVE-2025-61675&CVE-2025-61678&CVE-2025-66039 : Critical SQLi,File-Upload, and AUTHTYPE Bypass Flaws in FreePBX could Lead to RCE. -------------------- CVE-2025-61675: An authenticated SQL injection vulnerability CVE-2025-61678: An authenticated arbitrary fil
@HunterMapping
16 Dec 2025
5942 Impressions
17 Retweets
89 Likes
29 Bookmarks
0 Replies
1 Quote
๐จ๐จ Three Critical Vulnerabilities In FreePBX CVE-2025-61675: Authenticated SQL Injection - Affects endpoint module CVE-2025-61678: Authenticated Arbitrary File Upload - Affects endpoint module CVE-2025-66039: Authentication Bypass - Affects framework module ZoomEye Dork
@zoomeye_team
16 Dec 2025
2283 Impressions
11 Retweets
31 Likes
10 Bookmarks
1 Reply
0 Quotes
๐จ 3 critical/high FreePBX vulnerabilities disclosed CVE-2025-66039: Authentication bypass CVE-2025-61675: SQL injection CVE-2025-61678: File upload leading to RCE I've created detection scripts for these vulns: https://t.co/2dmklJha55 @Horizon3ai - https://t.co/nQOPyb6K4F
@rxerium
15 Dec 2025
20013 Impressions
71 Retweets
459 Likes
288 Bookmarks
7 Replies
0 Quotes