The Hacker News

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass only when webserver AUTHTYPE was ...
GitHub

GitHub - fuwasegu/php-sql-snapshot

The library uses greenlion/php-sql-parser for both MySQL and PostgreSQL, which supports standard SQL syntax. Database-specific parsers are kept separate to allow for future enhancements of ...