Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
directory pro vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-10201
An issue exists in NcMonitorServer.exe in NC Monitor Server in NComputing vSpace Pro 10 and 11. It is possible to read arbitrary files outside the root directory of the web server. This vulnerability could be exploited remotely by a crafted URL without credentials, with .../ or ....
Ncomputing Vspace Pro 10
Ncomputing Vspace Pro 11
1 EDB exploit
5
CVSSv2
CVE-2005-2952
Directory traversal vulnerability in s.pl in Subscribe Me Pro 2.044.09P and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the l parameter.
Subscribe Me Pro Subscribe Me Pro
1 EDB exploit
9.3
CVSSv2
CVE-2010-4153
Directory traversal vulnerability in CrossFTP Pro 1.65a, and probably earlier, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename.
Crossftp Crossftp Pro 1.51
Crossftp Crossftp Pro 1.50
Crossftp Crossftp Pro 1.36
Crossftp Crossftp Pro 1.35
Crossftp Crossftp Pro 1.27
Crossftp Crossftp Pro 1.26
Crossftp Crossftp Pro 1.19
Crossftp Crossftp Pro 1.18
Crossftp Crossftp Pro
Crossftp Crossftp Pro 1.40
Crossftp Crossftp Pro 1.39
Crossftp Crossftp Pro 1.32
Crossftp Crossftp Pro 1.31
Crossftp Crossftp Pro 1.23
Crossftp Crossftp Pro 1.22
Crossftp Crossftp Pro 1.15
Crossftp Crossftp Pro 1.14
Crossftp Crossftp Pro 1.53
Crossftp Crossftp Pro 1.52
Crossftp Crossftp Pro 1.38
Crossftp Crossftp Pro 1.37
Crossftp Crossftp Pro 1.30
5
CVSSv2
CVE-2018-20470
An issue exists in Tyto Sahi Pro up to and including 7.x.x and 8.0.0. A directory traversal (arbitrary file access) vulnerability exists in the web reports module. This allows an outside malicious user to view contents of sensitive files.
Sahipro Sahi Pro
1 EDB exploit
5
CVSSv2
CVE-2019-13063
Within Sahi Pro 8.0.0, an attacker can send a specially crafted URL to include any victim files on the system via the script parameter on the Script_view page. This will result in file disclosure (i.e., being able to pull any file from the remote victim application). This can be ...
Sahipro Sahi Pro 8.0.0
NA
CVE-2022-43264
Arobas Music Guitar Pro for iPad and iPhone before v1.10.2 allows malicious users to perform directory traversal and download arbitrary files via a crafted web request.
Guitar-pro Guitar Pro
5
CVSSv2
CVE-2005-4250
Directory traversal vulnerability in mcGallery PRO 2.2 and previous versions allows remote malicious users to read arbitrary files via the language parameter.
Mcgallery Mcgallery Pro 2.2
Mcgallery Mcgallery Pro 1.0
Mcgallery Mcgallery Pro 1.1
1 EDB exploit
5
CVSSv2
CVE-2002-0331
Directory traversal vulnerability in the HTTP server for BPM Studio Pro 4.2 allows remote malicious users to read arbitrary files via a .. (dot dot) in the HTTP request.
Alcatech Gmbh Bpm Studio Pro 4.2
1 EDB exploit
10
CVSSv2
CVE-2008-1117
Directory traversal vulnerability in the Notes (aka Flash Notes or instant messages) feature in tb2ftp.dll in Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, allows remote malicious users to upload files to arbitrary locations via a destination filename with a \ (b...
Netopia Timbuktu Pro 8.6.5
3 EDB exploits
5
CVSSv2
CVE-2014-8801
Directory traversal vulnerability in services/getfile.php in the Paid Memberships Pro plugin prior to 1.7.15 for WordPress allows remote malicious users to read arbitrary files via a .. (dot dot) in the QUERY_STRING in a getfile action to wp-admin/admin-ajax.php.
Strangerstudios Paid Memberships Pro
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »