Known Vulnerabilities for Trixbox by Netfortris
Listed below are 10 of the newest known vulnerabilities associated with "Trixbox" by "Netfortris".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-7351 json | An OS Command Injection vulnerability in the endpoint_devicemap.php component of Fonality Trixbox Community Edition allows an... | 8.8 - HIGH | 2020-05-01 | 2022-04-18 |
| CVE-2017-14537 json | trixbox 2.8.0.4 has path traversal via the xajaxargs array parameter to /maint/index.php?packages or the lang parameter to /m... | 6.5 - MEDIUM | 2018-02-16 | 2022-02-19 |
| CVE-2017-14536 json | trixbox 2.8.0.4 has XSS via the PATH_INFO to /maint/index.php or /user/includes/language/langChooser.php. | 5.4 - MEDIUM | 2018-02-16 | 2018-03-06 |
| CVE-2017-14535 json | trixbox 2.8.0.4 has OS command injection via shell metacharacters in the lang parameter to /maint/modules/home/index.php. | 8.8 - HIGH | 2018-02-16 | 2022-02-19 |
| CVE-2014-5112 json | Not Provided | 2014-07-28 | 2026-05-06 | |
| CVE-2014-5111 json | Not Provided | 2014-07-28 | 2026-05-06 | |
| CVE-2014-5110 json | Not Provided | 2014-07-28 | 2026-05-06 | |
| CVE-2014-5109 json | Not Provided | 2014-07-28 | 2026-05-06 | |
| CVE-2010-0702 json | Not Provided | 2010-02-23 | 2026-04-29 | |
| CVE-2007-6424 json | Not Provided | 2007-12-18 | 2026-04-23 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Netfortris | Trixbox | 2.8.0.4 |