Sangoma (FreePBX) Data Breach
Sangoma (FreePBX) experienced a data breach that was reported on August 29, 2025. Sangoma FreePBX contains an authentication bypass vulnerability due to insufficiently sanitized user-supplied data allows unauthenticated access to FreePBX Administrator leading to arbitrary database
Key Facts
- Organization
- Sangoma (FreePBX)
- Date Reported
- August 29, 2025
- Incident Type
- web app exploit
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding web app exploit Incidents
Web application exploits target vulnerabilities in websites and APIs. Secure development practices, WAFs, and penetration testing protect against these attacks.