Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
relative vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-3281
In Django 2.2 prior to 2.2.18, 3.0 prior to 3.0.12, and 3.1 prior to 3.1.6, the django.utils.archive.extract method (used by "startapp --template" and "startproject --template") allows directory traversal via an archive with absolute paths or relative paths wi...
Djangoproject Django
Fedoraproject Fedora 33
Netapp Snapcenter -
1 Github repository
NA
CVE-2021-20095
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none
4
CVSSv2
CVE-2018-19859
OpenRefine prior to 3.2 beta allows directory traversal via a relative pathname in a ZIP archive.
Openrefine Openrefine 3.0
Openrefine Openrefine 2.7
Openrefine Openrefine 2.6
Openrefine Openrefine 1.0.5
Openrefine Openrefine 1.0.7
Openrefine Openrefine 2.0
Openrefine Openrefine 2.5
Openrefine Openrefine 1.0
Openrefine Openrefine 2.8
Openrefine Openrefine 3.1
Openrefine Openrefine 2.1
Openrefine Openrefine 1.0.1
Openrefine Openrefine 1.0.2
Openrefine Openrefine 1.0.3
Openrefine Openrefine 1.0.6
Openrefine Openrefine 1.1
1 Github repository
5
CVSSv2
CVE-2021-31538
LANCOM R&S Unified Firewall (UF) devices running LCOS FX 10.5 allow Relative Path Traversal.
Lancom-systems Lcos Fx 10.5
5
CVSSv2
CVE-2002-1041
Unknown vulnerability in DCE (1) SMIT panels and (2) configuration commands, possibly related to relative pathnames.
Ibm Aix
5
CVSSv2
CVE-2017-17042
lib/yard/core_ext/file.rb in the server in YARD prior to 0.9.11 does not block relative paths with an initial ../ sequence, which allows malicious users to conduct directory traversal attacks and read arbitrary files.
Yardoc Yard
4
CVSSv2
CVE-2021-41026
A relative path traversal in FortiWeb versions 6.4.1, 6.4.0, and 6.3.0 up to and including 6.3.15 may allow an authenticated malicious user to retrieve arbitrary files from the underlying filesystem via specially crafted web requests.
Fortinet Fortiweb
7.5
CVSSv2
CVE-2019-9960
The downloadZip function in application/controllers/admin/export.php in LimeSurvey up to and including 3.16.1+190225 allows a relative path.
Limesurvey Limesurvey
1 Metasploit module
5
CVSSv2
CVE-2002-1040
Unknown vulnerability in the WebSecure (DFSWeb) configuration utilities in AIX 4.x, possibly related to relative pathnames.
Ibm Aix
4.3
CVSSv2
CVE-2019-12507
An XSS vulnerability exists in PHPRelativePath (aka Relative Path) up to and including 1.0.2 via the RelativePath.Example1.php path parameter.
Phprelativepath Project Phprelativepath
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »