Netfortris Trixbox

5 CVEs affecting Netfortris Trixbox. Latest disclosed: 2014-07-28. Critical: 0, High: 0.

Top CVEs affecting Netfortris Trixbox
CVESeverityScorePublishedSummary
CVE-2014-51122014-07-28maint/modules/home/index.php in Fonality trixbox allows remote attackers to execute arbitrary commands via shell metacharacters in the lang parameter.
CVE-2014-51112014-07-28Multiple directory traversal vulnerabilities in Fonality trixbox allow remote attackers to read arbitrary files via a .. (dot dot) in the lang parameter to (1)…
CVE-2014-51102014-07-28Cross-site scripting (XSS) vulnerability in user/help/html/index.php in Fonality trixbox allows remote attackers to inject arbitrary web script or HTML via the…
CVE-2014-51092014-07-28SQL injection vulnerability in maint/modules/endpointcfg/endpoint_generic.php in Fonality trixbox allows remote attackers to execute arbitrary SQL commands via…
CVE-2010-07022010-02-23SQL injection vulnerability in cisco/services/PhonecDirectory.php in Fonality Trixbox 2.2.4 allows remote attackers to execute arbitrary SQL commands via the I…