CVE-2025-57819
FreePBX Affected by Authentication Bypass Leading to SQL Injection and RCE
In short
FreePBX versions 15, 16, and 17 contain a flaw that allows attackers to bypass login requirements and gain unauthorized administrator access without credentials, which can then be exploited to manipulate the database or execute arbitrary code on the server.
Technical detail
An authentication bypass vulnerability in FreePBX 15–17 enables unauthenticated attackers to access the Administrator interface through insufficiently sanitized user input. This leads to chained SQL injection (CWE-89) and remote code execution capabilities, affecting core system integrity without requiring prior credentials or user interaction.
Summary generated and translated by AI from the official description.
FreePBX is an open-source web-based graphical user interface. FreePBX 15, 16, and 17 endpoints are vulnerable due to insufficiently sanitized user-supplied data allowing unauthenticated access to FreePBX Administrator leading to arbitrary database manipulation and remote code execution. This issue has been patched in endpoint versions 15.0.66, 16.0.89, and 17.0.3.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
Affected products
FreePBX · endpointpublic PoCs found — 16
cve_referencegithub.com/watchtowrlabs/watchTowr-vs-FreePBX-CVE-2025-57819★ 25githubgithub.com/0xEhab/FreePBX-CVE-2025-57819-RCE★ 8githubgithub.com/b4sh2/CVE-2025-57819-poc★ 7githubgithub.com/MuhammadWaseem29/SQL-Injection-and-RCE_CVE-2025-57819★ 6githubgithub.com/cybertechajju/cve-2025-57819★ 6githubgithub.com/blueisbeautiful/CVE-2025-57819★ 6githubgithub.com/Jeanback1/CVE-2025-57819-exploit★ 2githubgithub.com/orange0Mint/CVE-2025-57819_FreePBX★ 2githubgithub.com/rxerium/CVE-2025-57819★ 1githubgithub.com/ImBIOS/lab-cve-2025-57819★ 1githubgithub.com/xV4nd3Rx/CVE-2025-57819_FreePBX-PoC★ 1githubgithub.com/Sucuri-Labs/CVE-2025-57819-ioc-check★ 0githubgithub.com/jf-gondim/freepbx-endpoint-sqli-rce★ 0githubgithub.com/YuvrajSHAD/FreePBX-CVE-2025-57819★ 0githubgithub.com/0xyngtg/FreePBX-CVE-2025-57819-CVE-2025-61678★ 0githubgithub.com/ozcanpng/CVE-2025-57819-FreePBX-RCE2Root★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://community.freepbx.org/t/security-advisory-please-lock-down-your-administrator-access/107203https://github.com/FreePBX/security-reporting/security/advisories/GHSA-m42g-xg4c-5f3hhttps://github.com/watchtowrlabs/watchTowr-vs-FreePBX-CVE-2025-57819https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-57819