Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
relative vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-24742
An issue has been fixed in Qt versions 5.14.0 where QPluginLoader attempts to load plugins relative to the working directory, allowing malicious users to execute arbitrary code via crafted files.
Qt Qt
9.8
CVSSv3
CVE-2023-4897
Relative Path Traversal in GitHub repository mintplex-labs/anything-llm before 0.0.1.
Mintplexlabs Anythingllm
5.3
CVSSv3
CVE-2021-3281
In Django 2.2 prior to 2.2.18, 3.0 prior to 3.0.12, and 3.1 prior to 3.1.6, the django.utils.archive.extract method (used by "startapp --template" and "startproject --template") allows directory traversal via an archive with absolute paths or relative paths wi...
Djangoproject Django
Fedoraproject Fedora 33
Netapp Snapcenter -
1 Github repository
NA
CVE-2021-20095
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none
7.5
CVSSv3
CVE-2021-31538
LANCOM R&S Unified Firewall (UF) devices running LCOS FX 10.5 allow Relative Path Traversal.
Lancom-systems Lcos Fx 10.5
6.5
CVSSv3
CVE-2018-19859
OpenRefine prior to 3.2 beta allows directory traversal via a relative pathname in a ZIP archive.
Openrefine Openrefine 3.0
Openrefine Openrefine 2.7
Openrefine Openrefine 2.6
Openrefine Openrefine 1.0.5
Openrefine Openrefine 1.0.7
Openrefine Openrefine 2.0
Openrefine Openrefine 2.5
Openrefine Openrefine 1.0
Openrefine Openrefine 2.8
Openrefine Openrefine 3.1
Openrefine Openrefine 2.1
Openrefine Openrefine 1.0.1
Openrefine Openrefine 1.0.2
Openrefine Openrefine 1.0.3
Openrefine Openrefine 1.0.6
Openrefine Openrefine 1.1
1 Github repository
NA
CVE-2002-1041
Unknown vulnerability in DCE (1) SMIT panels and (2) configuration commands, possibly related to relative pathnames.
Ibm Aix
6.5
CVSSv3
CVE-2021-41026
A relative path traversal in FortiWeb versions 6.4.1, 6.4.0, and 6.3.0 up to and including 6.3.15 may allow an authenticated malicious user to retrieve arbitrary files from the underlying filesystem via specially crafted web requests.
Fortinet Fortiweb
7.5
CVSSv3
CVE-2017-17042
lib/yard/core_ext/file.rb in the server in YARD prior to 0.9.11 does not block relative paths with an initial ../ sequence, which allows malicious users to conduct directory traversal attacks and read arbitrary files.
Yardoc Yard
6.1
CVSSv3
CVE-2019-12507
An XSS vulnerability exists in PHPRelativePath (aka Relative Path) up to and including 1.0.2 via the RelativePath.Example1.php path parameter.
Phprelativepath Project Phprelativepath
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »