You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
pbxact
About this tag
The pbxact tag on WindowsForum.com covers discussions about Sangoma's PBXAct appliances, which are commercial telephony systems built on FreePBX and Asterisk. Recent content highlights a critical vulnerability (CVE-2025-57819) affecting FreePBX, including PBXAct deployments, that involves an authentication bypass and SQL injection chain leading to remote code execution. This vulnerability has been added to CISA's Known Exploited Vulnerabilities catalog due to active exploitation, emphasizing the need for immediate patching. The tag is relevant for IT professionals managing PBXAct systems, particularly those concerned with security updates, vulnerability remediation, and the intersection of telephony infrastructure with enterprise IT security.
CISA has added CVE-2025-57819 — an authentication‑bypass and SQL‑injection chain that can lead to remote code execution in Sangoma FreePBX — to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation and urging immediate remediation. Background
FreePBX is a...