Multiple directory traversal vulnerabilities in Fonality trixbox allow remote attackers to read arbitrary files via a .. (dot dot) in the lang parameter to (1) home/index.php, (2) asterisk_info/asterisk_info.php, (3) repo/repo.php, or (4) endpointcfg/endpointcfg.php in maint/modules/.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-09-16T19:51:36.059Z
Reserved: 2014-07-28T00:00:00Z
Link: CVE-2014-5111

No data.

Status : Modified
Published: 2014-07-28T15:55:04.477
Modified: 2024-11-21T02:11:26.600
Link: CVE-2014-5111

No data.