Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
path traversal vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-23793
An issue exists in Joomla! 3.0.0 up to and including 3.10.6 & 4.0.0 up to and including 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.
Joomla Joomla!
5.5
CVSSv3
CVE-2019-5251
There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installing, backing up and restoring a malicious application. Successful exploit could ca...
Huawei Honor V10 Firmware
Huawei P30 Firmware
Huawei Enjoy 7s Firmware
Huawei Mate 20 Firmware
Huawei Honor 9 Lite Firmware
Huawei Honor 9i Firmware
Huawei M6 Firmware
Huawei P30 Pro Firmware
Huawei Honor 20s Firmware
6.5
CVSSv3
CVE-2020-26065
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The vulnerability is due to insufficient v...
Cisco Catalyst Sd-wan Manager 17.2.6
Cisco Catalyst Sd-wan Manager 17.2.7
Cisco Catalyst Sd-wan Manager 17.2.5
Cisco Catalyst Sd-wan Manager 18.3.1.1
Cisco Catalyst Sd-wan Manager 18.3.3.1
Cisco Catalyst Sd-wan Manager 18.3.3
Cisco Catalyst Sd-wan Manager 18.3.1
Cisco Catalyst Sd-wan Manager 18.3.0
Cisco Catalyst Sd-wan Manager 18.4.0.1
Cisco Catalyst Sd-wan Manager 18.4.3
Cisco Catalyst Sd-wan Manager 18.4.0
Cisco Catalyst Sd-wan Manager 18.4.1
Cisco Catalyst Sd-wan Manager 19.2.0
Cisco Catalyst Sd-wan Manager 19.2.097
Cisco Catalyst Sd-wan Manager 19.2.31
Cisco Catalyst Sd-wan Manager 19.2.929
Cisco Catalyst Sd-wan Manager 20.1.1.1
Cisco Catalyst Sd-wan Manager 20.1.12
Cisco Catalyst Sd-wan Manager 20.3.1
Cisco Catalyst Sd-wan Manager 17.2.8
Cisco Catalyst Sd-wan Manager 17.2.9
Cisco Catalyst Sd-wan Manager 17.2.10
NA
CVE-2010-0396
Directory traversal vulnerability in the dpkg-source component in dpkg prior to 1.14.29 allows remote malicious users to modify arbitrary files via a crafted Debian source archive.
Debian Dpkg 1.10.5
Debian Dpkg 1.13.20
Debian Dpkg 1.10.6
Debian Dpkg 1.14.4
Debian Dpkg 1.14.12
Debian Dpkg 1.9.20
Debian Dpkg 1.13.9
Debian Dpkg 1.14.23
Debian Dpkg 1.14.16.6
Debian Dpkg 1.13.11
Debian Dpkg 1.14.18
Debian Dpkg 1.14.21
Debian Dpkg 1.10
Debian Dpkg 1.10.15
Debian Dpkg 1.14.16.4
Debian Dpkg 1.10.1
Debian Dpkg 1.13.12
Debian Dpkg 1.10.4
Debian Dpkg 1.10.23
Debian Dpkg 1.14.7
Debian Dpkg 1.10.8
Debian Dpkg 1.10.18.1
6.7
CVSSv3
CVE-2019-1952
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to overwrite or read arbitrary files. The attacker would need valid administrator privilege-level credentials. This vulnerability is due to improp...
Cisco Enterprise Network Function Virtualization Infrastructure
8.1
CVSSv3
CVE-2018-0464
A vulnerability in Cisco Data Center Network Manager software could allow an authenticated, remote malicious user to conduct directory traversal attacks and gain access to sensitive files on the targeted system. The vulnerability is due to improper validation of user requests wit...
Cisco Prime Data Center Network Manager 6.3(1)
Cisco Prime Data Center Network Manager 6.3(2)
Cisco Prime Data Center Network Manager 7.0(1)
Cisco Prime Data Center Network Manager 7.0(2)
Cisco Prime Data Center Network Manager 7.1(1)
Cisco Prime Data Center Network Manager 10.0
Cisco Prime Data Center Network Manager 10.1
Cisco Prime Data Center Network Manager 10.2
Cisco Prime Data Center Network Manager 10.3(1)
NA
CVE-2017-12854
Sophos XG Firewall 16.05.4 MR-4 - Path Traversal
1 EDB exploit
NA
CVE-2014-3318
Directory traversal vulnerability in dna/viewfilecontents.do in the Dialed Number Analyzer (DNA) component in Cisco Unified Communications Manager allows remote authenticated users to read arbitrary files via a crafted URL, aka Bug ID CSCup76318.
Cisco Unified Communications Manager
Cisco Unified Communications Manager 10.0(1) Base
NA
CVE-2010-42783
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
NA
CVE-2010-42792
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »