CVE-2025-59429P4MEDIUMCVSS 5.4fixed in 16.0.68.39·v>= 17.0.0, < 17.0.18.382025-10-14
CVE-2025-59429 [MEDIUM] CWE-79 CVE-2025-59429: FreePBX is an open source GUI for managing Asterisk. In versions prior to 16.0.68.39 for FreePBX 16
FreePBX is an open source GUI for managing Asterisk. In versions prior to 16.0.68.39 for FreePBX 16 and versions prior to 17.0.18.38 for FreePBX 17, a reflected cross-site scripting vulnerability is present on the Asterisk HTTP Status page. The Asterisk HTTP status page is exposed by FreePBX and is available by default on version 16 via any bound IP a
nvd