HackTheBox: Connected
A Linux FreePBX appliance: an unauthenticated SQL injection in the Endpoint Manager module (CVE-2025-57819) bypasses auth and reaches a SQL sink, abused to create an admin or inject a reverse shell job for a shell as asterisk, then a root incron HA hook that includes a PHP file from an asterisk-writable webroot is hijacked to run code as root.
Read 