Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2009-1802

Multiple cross-site request forgery (CSRF) vulnerabilities in FreePBX 2.5.1, and other 2.4.x, 2.5.x, and pre-release 2.6.x versions, allow remote attackers to hijack the authentication of admins for requests that create a new admin account or have unspecified other impact.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.2%
CVSS Severity
CVSS v2 Score 6.8
Products affected by CVE-2009-1802
  • Freepbx » Freepbx » Version: 2.4
    cpe:2.3:a:freepbx:freepbx:2.4
  • Freepbx » Freepbx » Version: 2.4.0_beta1
    cpe:2.3:a:freepbx:freepbx:2.4.0_beta1
  • Freepbx » Freepbx » Version: 2.4.0_beta2
    cpe:2.3:a:freepbx:freepbx:2.4.0_beta2
  • Freepbx » Freepbx » Version: 2.4.1
    cpe:2.3:a:freepbx:freepbx:2.4.1
  • Freepbx » Freepbx » Version: 2.5
    cpe:2.3:a:freepbx:freepbx:2.5
  • Freepbx » Freepbx » Version: 2.5.0_beta1
    cpe:2.3:a:freepbx:freepbx:2.5.0_beta1
  • Freepbx » Freepbx » Version: 2.5.0rc2
    cpe:2.3:a:freepbx:freepbx:2.5.0rc2
  • Freepbx » Freepbx » Version: 2.5.0rc3
    cpe:2.3:a:freepbx:freepbx:2.5.0rc3
  • Freepbx » Freepbx » Version: 2.5.1
    cpe:2.3:a:freepbx:freepbx:2.5.1
  • Freepbx » Freepbx » Version: 2.5.2
    cpe:2.3:a:freepbx:freepbx:2.5.2
  • Sangoma » Freepbx » Version: 2.4.0
    cpe:2.3:a:sangoma:freepbx:2.4.0
  • Sangoma » Freepbx » Version: 2.5.0
    cpe:2.3:a:sangoma:freepbx:2.5.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved