VYPR

Contactmanager

by Freepbx

Source repositories

CVEs (2)

  • CVE-2025-55209MedSep 4, 2025
    risk 0.26cvss epss 0.00

    contactmanager is a module for FreePBX@, which is an open source GUI that controls and manages Asterisk© (PBX). In versions 15.0.14 and below, 16.0.0 through 16.0.26.4 and 17.0.0 through 17.0.5, a stored cross-site scripting (XSS) vulnerability in FreePBX allows a…

  • CVE-2019-16966Oct 21, 2019
    risk 0.00cvss epss 0.01

    An issue was discovered in Contactmanager 13.x before 13.0.45.3, 14.x before 14.0.5.12, and 15.x before 15.0.8.21 for FreePBX 14.0.10.3. In the Contactmanager class (html\admin\modules\contactmanager\Contactmanager.class.php), an unsanitized group variable coming from the URL is…

VYPR — Vulnerability Intelligence