Advanced Threat Data Export

Filter and download the raw CVE repository (CSV/JSON) for SIEM integration and internal reporting.

Vulnerability Keyword

Date Range

Severity

Format

Upgrade Package

Data export is locked. Upgrade your package to enable filtering and downloading.

← Back to CVE List

CVE-2025-57819NVD

Description

FreePBX is an open-source web-based graphical user interface. FreePBX 15, 16, and 17 endpoints are vulnerable due to insufficiently sanitized user-supplied data allowing unauthenticated access to FreePBX Administrator leading to arbitrary database manipulation and remote code execution. This issue has been patched in endpoint versions 15.0.66, 16.0.89, and 17.0.3.

Severity Level

CRITICAL (10.0)

Published Date

28/08/2025

Last Modified

12/09/2025

Exploitation Status

ACTIVE

References

https://community.freepbx.org/t/security-advisory-please-lock-down-your-administrator-access/107203
https://github.com/FreePBX/security-reporting/security/advisories/GHSA-m42g-xg4c-5f3h
https://github.com/watchtowrlabs/watchTowr-vs-FreePBX-CVE-2025-57819