Post-authentication SQL Injection in FreePBX by Sangoma Technologies
CVE-2018-6393

7.2HIGH

Key Information:

Vendor

Sangoma

Status
Freepbx
Vendor
CVE Published:
29 January 2018

What is CVE-2018-6393?

Certain versions of FreePBX, primarily 10.13.66-32bit and 14.0.1.24, exhibit a vulnerability that allows an authenticated user to inject SQL commands through the 'order' parameter. This flaw raises concerns about user data integrity as it permits direct modification of SQL tables without necessary input validation. Despite the vendor's assertion that such behavior is intended for administrative flexibility, it poses significant risks for unauthorized data manipulation and potential system compromise.

References

https://github.com/c610/tmp/blob/master/sqlipoc-freepbx-1...
x_refsource_MISC
http://www.securityfocus.com/bid/102854
vdb-entryx_refsource_BID
http://code610.blogspot.com/2018/01/post-auth-sql-injecti...
x_refsource_MISC

CVSS V3.1

Score:
7.2
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.