Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-15779
A Path Traversal issue exists in the socket.io-file package up to and including 2.0.31 for Node.js. The socket.io-file::createFile message uses path.join with ../ in the name option, and the uploadDir and rename options determine the path.
Socket.io-file Project Socket.io-file
NA
CVE-2022-36313
An issue exists in the file-type package prior to 16.5.4 and 17.x prior to 17.1.3 for Node.js. A malformed MKV file could cause the file type detector to get caught in an infinite loop. This would make the application become unresponsive and could be used to cause a DoS attack.
File-type Project File-type
4
CVSSv2
CVE-2016-0361
IBM General Parallel File System (GPFS) 3.5 prior to 3.5.0.29 efix 6 and 4.1.1 prior to 4.1.1.4 efix 9, when the Spectrum Scale GUI is used with DB2 on Linux, UNIX and Windows, allows remote authenticated users to obtain sensitive information via unspecified vectors, as demonstra...
Ibm General Parallel File System 3.5.0.9
Ibm General Parallel File System 3.5.0.7
Ibm General Parallel File System 4.1.0.1
Ibm General Parallel File System 3.5.0.16
Ibm General Parallel File System 3.5.0.11
Ibm General Parallel File System 3.5.0.3
Ibm General Parallel File System 3.5
7.5
CVSSv2
CVE-2008-7027
Libra File Manager 1.18 and previous versions allows remote malicious users to bypass authentication and gain privileges by setting the user and pass cookies to 1.
Libra File Manager Php Filemanager
Libra File Manager Php Filemanager 1.03
Libra File Manager Php Filemanager 1.08
Libra File Manager Php Filemanager 1.05
Libra File Manager Php Filemanager 1.17
Libra File Manager Php Filemanager 1.0
1 EDB exploit
6.4
CVSSv2
CVE-2008-4319
fileadmin.php in Libra File Manager (aka Libra PHP File Manager) 1.18 and previous versions allows remote malicious users to bypass authentication, and read arbitrary files, modify arbitrary files, and list arbitrary directories, by inserting certain user and isadmin parameters i...
Libra File Manager Php Filemanager 1.05
Libra File Manager Php Filemanager 1.08
Libra File Manager Php Filemanager
Libra File Manager Php Filemanager 1.17
Libra File Manager Php Filemanager 1.00
Libra File Manager Php Filemanager 1.03
1 EDB exploit
2.1
CVSSv2
CVE-2017-1654
IBM Spectrum Scale 4.1.1 and 4.2.0 - 4.2.3 could allow a local unprivileged user access to information located in dump files. User data could be sent to IBM during service engagements. IBM X-Force ID: 133378.
Ibm Spectrum Scale 5.0.0.0
Ibm Spectrum Scale
Ibm General Parallel File System 4.1.0.0
Ibm General Parallel File System 4.1.0.1
Ibm General Parallel File System 4.1.0.2
Ibm General Parallel File System 4.1.0.4
Ibm General Parallel File System 4.1.0.6
Ibm General Parallel File System 4.1.0.7
Ibm General Parallel File System 4.1.0.8
Ibm General Parallel File System 4.1.0.3
Ibm General Parallel File System 4.1.0.5
5
CVSSv2
CVE-2005-1956
File Upload Manager allows remote malicious users to upload arbitrary files by modifying the test variable to contain a value of '~~~~~~' (six tildes), which bypasses the file extension checks.
File Upload Manager File Upload Manager
5
CVSSv2
CVE-2020-23040
Sky File v2.1.0 contains a directory traversal vulnerability in the FTP server which allows malicious users to access sensitive data and files via 'null' path commands.
Sky File Project Sky File 2.1.0
2.1
CVSSv2
CVE-2020-23058
An issue in the authentication mechanism in Nong Ge File Explorer v1.4 unauthenticated allows to access sensitive data.
File Explorer Project File Explorer 1.4
4
CVSSv2
CVE-2020-36488
An issue in the FTP server of Sky File v2.1.0 allows malicious users to perform directory traversal via `/null//` path commands.
Sky File Project Sky File 2.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »