Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
voipmonitor voipmonitor vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-30461
A remote code execution issue exists in the web UI of VoIPmonitor prior to 24.61. When the recheck option is used, the user-supplied SPOOLDIR value (which might contain PHP code) is injected into config/configuration.php.
Voipmonitor Voipmonitor
3 Github repositories
9.8
CVSSv3
CVE-2022-24260
A SQL injection vulnerability in Voipmonitor GUI before v24.96 allows malicious users to escalate privileges to the Administrator level.
Voipmonitor Voipmonitor
1 Github repository
8.8
CVSSv3
CVE-2022-24262
The config restore function of Voipmonitor GUI before v24.96 does not properly check files sent as restore archives, allowing remote malicious users to execute arbitrary commands via a crafted file in the web root.
Voipmonitor Voipmonitor
9.8
CVSSv3
CVE-2022-24259
An incorrect check in the component cdr.php of Voipmonitor GUI before v24.96 allows unauthenticated malicious users to escalate privileges via a crafted request.
Voipmonitor Voipmonitor
9.8
CVSSv3
CVE-2021-41408
VoIPmonitor WEB GUI up to version 24.61 is affected by SQL injection through the "api.php" file and "user" parameter.
Voipmonitor Voipmonitor 24.61
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started