CVE-2010-3490

Name of the Vulnerable Software and Affected Versions FreePBX versions 2.8.0 and earlier

Description A directory traversal issue exists in the System Recordings component of the configuration interface, allowing remote authenticated administrators to create arbitrary files. This is achieved by using a .. (dot dot) in the usersnum parameter to admin/config.php, potentially allowing the creation of a .php file under the web root.

Recommendations For FreePBX versions 2.8.0 and earlier, consider restricting access to the admin/config.php endpoint and the usersnum parameter to minimize the risk of exploitation. As a temporary workaround, limit the ability of administrators to create files via the System Recordings component until a fix is available.