A remote command execution vulnerability exists in FreePBX. The vulnerability is due to lack of sanitization for ‘remotemod’ parameter. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary command in the security context of the affected service.