FusionPBX 5.0.1 exists to contain a command injection vulnerability via /fax/fax_send.php.
fusionpbx fusionpbx 5.0.1