Share
## https://sploitus.com/exploit?id=7733FFE3-A632-55BD-B574-768AA08EDE32
PoC exploit for CVE-2025-57819, a Remote Code Execution (RCE) vulnerability in FreePBX versions 15, 16, and 17. The vulnerability is caused by insufficient sanitization of user-supplied data in endpoints, allowing for SQL injection. The exploit targets the FreePBX framework, specifically the vulnerability class of SQL injection leading to RCE. Not specified how it is typically invoked. Preconditions include a vulnerable version of FreePBX (15, 16, or 17). Expected impact is Remote Code Execution.