Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.1 vulnerabilities and exploits
(subscribe to this query)
6
CVSSv2
CVE-2008-1606
Multiple directory traversal vulnerabilities in Elastic Path (EP) 4.1 and 4.1.1 allow remote malicious users to (1) download arbitrary files via a .. (dot dot) in the file parameter to manager/getImportFileRedirect.jsp, (2) upload arbitrary files via a "..\" (dot dot ba...
Elastic Path Elastic Path 4.1.1
Elastic Path Elastic Path 4.1
2 EDB exploits
6.8
CVSSv2
CVE-2008-5604
Directory traversal vulnerability in index.php in My Simple Forum 3.0 and 4.1, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the action parameter.
Drennansoft My Simple Forum 3.0
Drennansoft My Simple Forum 4.1
1 EDB exploit
7.5
CVSSv2
CVE-2007-1424
Multiple PHP remote file inclusion vulnerabilities in Softnews Media Group DataLife Engine allow remote malicious users to execute arbitrary PHP code via a URL in the root_dir parameter to (1) init.php and (2) Ajax/editnews.php. NOTE: some of these details are obtained from third...
Softnews Media Group Datalife Engine 4.1
Softnews Media Group Datalife Engine 5.5
2 EDB exploits
4.6
CVSSv2
CVE-2005-3343
tkdiff prior to 4.1.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Tkdiff Tkdiff 3.0.8
Tkdiff Tkdiff 3.0.9
Tkdiff Tkdiff 4.0
Tkdiff Tkdiff 4.0.2
Tkdiff Tkdiff 4.1
3.6
CVSSv2
CVE-2000-0667
Vulnerability in gpm in Caldera Linux allows local users to delete arbitrary files or conduct a denial of service.
Conectiva Linux 5.0
Conectiva Linux 4.0
Conectiva Linux 4.0es
Conectiva Linux 4.1
Conectiva Linux 4.2
Conectiva Linux 5.1
5
CVSSv2
CVE-2002-0708
Directory traversal vulnerability in the Web Reports Server for SurfControl SuperScout WebFilter allows remote malicious users to read arbitrary files via an HTTP request containing ... (triple dot) sequences.
Surfcontrol Web Filter 4.1
Surfcontrol Superscout Web Filter 3.0.3
Surfcontrol Web Filter 4.0
Surfcontrol Superscout Web Filter 3.0
1 EDB exploit
2.1
CVSSv2
CVE-2010-2928
The vCenter Tomcat Management Application in VMware vCenter Server 4.1 before Update 1 stores log-on credentials in a configuration file, which allows local users to gain privileges by reading this file.
Vmware Vcenter Server 4.1
4.3
CVSSv2
CVE-2015-0989
PACTware 4.1 SP3 allows remote malicious users to cause a denial of service (application crash) via a crafted file that triggers an internal error.
Icsgmbh Pactware 4.1
4.6
CVSSv2
CVE-2000-0927
WQuinn QuotaAdvisor 4.1 does not properly record file sizes if they are stored in alternative data streams, which allows users to bypass quota restrictions.
Wquinn Quotaadvisor 4.1
5
CVSSv2
CVE-2014-0731
The administration interface in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows remote malicious users to bypass authentication and read Java class files via a direct request, aka Bug ID CSCum46497.
Cisco Unified Communications Manager 3.3\\(5\\)sr2a
Cisco Unified Communications Manager 4.1\\(3\\)sr1
Cisco Unified Communications Manager 4.1\\(3\\)sr3
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 4.1\\(3\\)sr4
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager
Cisco Unified Communications Manager 3.3\\(5\\)
Cisco Unified Communications Manager 3.3\\(5\\)sr1
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.1\\(3\\)
Cisco Unified Communications Manager 4.1\\(3\\)sr2
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.2.3sr2b
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »