CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Trixbox: >> Trixbox >> 2.4.2.0 Security Vulnerabilities

CVE-2008-6825

Directory traversal vulnerability in user/index.php in Fonality trixbox CE 2.6.1 and earlier allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the langChoice parameter.

CVSS Score

6.8

EPSS Score

0.633

Published

2009-06-05

CVE-2008-0540

Multiple cross-site scripting (XSS) vulnerabilities in trixbox 2.4.2.0 allow remote attackers to inject arbitrary web script or HTML via the query string to index.php in (1) user/ or (2) maint/.

CVSS Score

4.3

EPSS Score

0.002

Published

2008-02-01

Page 1

Vulnerabilities

Vulnerable Software

Trixbox: >> Trixbox >> 2.4.2.0 Security Vulnerabilities

Products

Pricing

Contact Us