Lucene search
K

14 matches found

Packet Storm
Packet Storm
added 2021/05/28 12:0 a.m.185 views

Trixbox 2.8.0.4 Remote Code Execution

Exploit Title: Trixbox 2.8.0.4 - 'lang' Remote Code Execution Unauthenticated Date: 27.05.2021 Exploit Author: Ron Jost Hacker5preme Credits to: https://secur1tyadvisory.wordpress.com/2018/02/11/trixbox-os-command-injection-vulnerability-cve-2017-14535/ Credits to: Sachin Wagh Vendor Homepage:...

9CVSS8.9AI score0.50069EPSS
Exploits4
0day.today
0day.today
added 2021/05/28 12:0 a.m.73 views

Trixbox 2.8.0.4 - (lang) Path Traversal Exploit

Exploit Title: Trixbox 2.8.0.4 - 'lang' Path Traversal Exploit Author: Ron Jost Hacker5preme Credits to: https://secur1tyadvisory.wordpress.com/2018/02/13/trixbox-multiple-path-traversal-vulnerabilities-cve-2017-14537/ Credits to: Sachin Wagh Vendor Homepage:...

6.5CVSS0.39486EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/05/28 12:0 a.m.177 views

Trixbox 2.8.0.4 - 'lang' Remote Code Execution (Unauthenticated)

Exploit Title: Trixbox 2.8.0.4 - 'lang' Remote Code Execution Unauthenticated Date: 27.05.2021 Exploit Author: Ron Jost Hacker5preme Credits to: https://secur1tyadvisory.wordpress.com/2018/02/11/trixbox-os-command-injection-vulnerability-cve-2017-14535/ Credits to: Sachin Wagh Vendor Homepage:...

9CVSS8.8AI score0.50069EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/05/28 12:0 a.m.208 views

Trixbox 2.8.0.4 - 'lang' Path Traversal

Exploit Title: Trixbox 2.8.0.4 - 'lang' Path Traversal Date: 27.05.2021 Exploit Author: Ron Jost Hacker5preme Credits to: https://secur1tyadvisory.wordpress.com/2018/02/13/trixbox-multiple-path-traversal-vulnerabilities-cve-2017-14537/ Credits to: Sachin Wagh Vendor Homepage:...

6.5CVSS6.5AI score0.39486EPSS
Exploits4
NVD
NVD
added 2018/02/16 4:29 a.m.13 views

CVE-2017-14535

trixbox 2.8.0.4 has OS command injection via shell metacharacters in the lang parameter to /maint/modules/home/index.php...

9CVSS8.9AI score0.50069EPSS
Exploits4References6
Prion
Prion
added 2018/02/16 4:29 a.m.13 views

Command injection

trixbox 2.8.0.4 has OS command injection via shell metacharacters in the lang parameter to /maint/modules/home/index.php...

9CVSS9AI score0.50069EPSS
Exploits4References6Affected Software1
OSV
OSV
added 2018/02/16 4:29 a.m.3 views

CVE-2017-14537

trixbox 2.8.0.4 has path traversal via the xajaxargs array parameter to /maint/index.php?packages or the lang parameter to /maint/modules/home/index.php...

6.5CVSS5.8AI score0.39486EPSS
Exploits4References4
OSV
OSV
added 2018/02/16 4:29 a.m.4 views

CVE-2017-14535

trixbox 2.8.0.4 has OS command injection via shell metacharacters in the lang parameter to /maint/modules/home/index.php...

8.8CVSS5.8AI score0.50069EPSS
Exploits4References6
Prion
Prion
added 2018/02/16 4:29 a.m.12 views

Path traversal

trixbox 2.8.0.4 has path traversal via the xajaxargs array parameter to /maint/index.php?packages or the lang parameter to /maint/modules/home/index.php...

4CVSS6.4AI score0.39486EPSS
Exploits4References4Affected Software1
NVD
NVD
added 2018/02/16 4:29 a.m.17 views

CVE-2017-14536

trixbox 2.8.0.4 has XSS via the PATHINFO to /maint/index.php or /user/includes/language/langChooser.php...

5.4CVSS5.3AI score0.00615EPSS
Exploits1References2
Prion
Prion
added 2018/02/16 4:29 a.m.21 views

Code injection

trixbox 2.8.0.4 has XSS via the PATHINFO to /maint/index.php or /user/includes/language/langChooser.php...

3.5CVSS5.2AI score0.00615EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/02/16 4:0 a.m.16 views

CVE-2017-14535

trixbox 2.8.0.4 has OS command injection via shell metacharacters in the lang parameter to /maint/modules/home/index.php...

9AI score0.50069EPSS
Exploits4References6
Cvelist
Cvelist
added 2018/02/16 4:0 a.m.20 views

CVE-2017-14536

trixbox 2.8.0.4 has XSS via the PATHINFO to /maint/index.php or /user/includes/language/langChooser.php...

5.3AI score0.00615EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2014/04/09 12:0 a.m.24 views

Trixbox 2.8.0.4 Cross Site Scripting

Exploit Title: Trixbox 2.8.0.4 XSS Exploit Date: 07/04/2014 Exploit Author: Daniel Moreno a.k.a W1ckerMan Vendor Homepage: http://sourceforge.net/projects/asteriskathome/ Version: 2.8.0.4 This exploit needs authentication...

7.4AI score
Exploits0
Rows per page
Query Builder