Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
path traversal vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2023-33747
CloudPanel v2.2.2 allows malicious users to execute a path traversal.
Mgt-commerce Cloudpanel
2 Github repositories
6.5
CVSSv3
CVE-2020-3241
A vulnerability in the orchestration tasks of Cisco UCS Director could allow an authenticated, remote malicious user to perform a path traversal attack on an affected device. The vulnerability is due to insufficient validation of user-supplied input on the web-based management in...
Cisco Ucs Director
7.5
CVSSv3
CVE-2015-1876
Directory traversal vulnerability in ES File Explorer 3.2.4.1.
Estrongs Es File Explorer 3.2.4.1
9.1
CVSSv3
CVE-2020-27130
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote malicious user to gain access to sensitive information. The vulnerability is due to improper validation of directory traversal character sequences within requests to an affected device. An attacker c...
Cisco Security Manager
7.5
CVSSv3
CVE-2018-8727
Path Traversal in Gateway in Mirasys DVMS Workstation 5.12.6 and previous versions allows an malicious user to traverse the file system to access files or directories via the Web Client webserver.
Mirasys Dvms Workstation
NA
CVE-2015-8357
Directory traversal vulnerability in the bitrix.xscan module prior to 1.0.4 for Bitrix allows remote authenticated users to rename arbitrary files, and consequently obtain sensitive information or cause a denial of service, via a .. (dot dot) in the file parameter to admin/bitrix...
Bitrix Xscan
1 EDB exploit
NA
CVE-2014-5258
Directory traversal vulnerability in showTempFile.php in webEdition CMS prior to 6.3.9.0 Beta allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.
Webedition Webedition Cms
1 EDB exploit
7.5
CVSSv3
CVE-2023-37474
Copyparty is a portable file server. Versions before 1.8.2 are subject to a path traversal vulnerability detected in the `.cpr` subfolder. The Path Traversal attack technique allows an attacker access to files, directories, and commands that reside outside the web document root d...
Copyparty Project Copyparty
NA
CVE-2024-5040
There are multiple ways in LCDS LAquis SCADA for an malicious user to access locations outside of their own directory.
4.9
CVSSv3
CVE-2022-23409
The Logs plugin prior to 3.0.4 for Craft CMS allows remote malicious users to read arbitrary files via input to actionStream in Controller.php.
Ethercreative Logs
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »