Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
app/backup/index.php in the Backup Module in FusionPBX 4.4.3 suffers from a command injection vulnerability due to a lack of input validation, which allows authenticated administrative attackers to execute commands on the host.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FusionPBX Backup模块命令注入漏洞
Vulnerability Description
FusionPBX是一套可扩展、多线程的通信平台。 该平台可作为呼叫中心服务器、传真服务器、voip服务器、语音邮件服务器、会议服务器和语音应用服务器等。Backup Module是其中的一个备份模块。该平台可作为呼叫中心服务器、传真服务器、voip服务器、语音邮件服务器、会议服务器和语音应用服务器等。 FusionPBX 4.4.3版本中的Backup模块的app/backup/index.php文件存在命令注入漏洞,该漏洞源于程序缺少输入验证。攻击者可利用该漏洞执行命令。
CVSS Information
N/A
Vulnerability Type
N/A