TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

By rooter

Multiple security vulnerabilities have been disclosed in the open-source private branch exchange (PBX) platform FreePBX, including a critical flaw that could result in an authentication bypass under certain configurations.
The shortcomings, discovered by Horizon3.ai and reported to the project maintainers on September 15, 2025, are listed below –

CVE-2025-61675 (CVSS score: 8.6) – Numerous

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

AI Conundrum: Why MCP Security Can’t Be Patched Away

rooter
Cyber Security

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

rooter
Cyber Security

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

rooter

Leave a Reply

You Missed

News

Look at This Treasure Trove of Unseen Photos From the Filming of ‘Return of the Jedi’

News

Concerns Over Meta’s Smart Glasses Have Reached the U.S. Senate

Cyber Security

AI Conundrum: Why MCP Security Can’t Be Patched Away

News

Meta After Killing the Metaverse: ‘Just Kidding’