Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
path traversal vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2015-1876
Directory traversal vulnerability in ES File Explorer 3.2.4.1.
Estrongs Es File Explorer 3.2.4.1
785
VMScore
CVE-2008-4361
Directory traversal vulnerability in PowerPortal 2.0.13 allows remote malicious users to list and possibly read arbitrary files via a .. (dot dot) in the path parameter to the default URI.
Powerportal Powerportal 2.0.13
1 EDB exploit
445
VMScore
CVE-2018-8727
Path Traversal in Gateway in Mirasys DVMS Workstation 5.12.6 and previous versions allows an malicious user to traverse the file system to access files or directories via the Web Client webserver.
Mirasys Dvms Workstation
570
VMScore
CVE-2020-27130
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote malicious user to gain access to sensitive information. The vulnerability is due to improper validation of directory traversal character sequences within requests to an affected device. An attacker c...
Cisco Security Manager
516
VMScore
CVE-2017-1000028
Oracle, GlassFish Server Open Source Edition 4.1 is vulnerable to both authenticated and unauthenticated Directory Traversal vulnerability, that can be exploited by issuing a specially crafted HTTP GET request.
Oracle Glassfish Server 4.1
3 EDB exploits
2 Github repositories
446
VMScore
CVE-2021-43557
The uri-block plugin in Apache APISIX prior to 2.10.2 uses $request_uri without verification. The $request_uri is the full original request URI without normalization. This makes it possible to construct a URI to bypass the block list on some occasions. For instance, when the bloc...
Apache Apisix
405
VMScore
CVE-2014-5258
Directory traversal vulnerability in showTempFile.php in webEdition CMS prior to 6.3.9.0 Beta allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.
Webedition Webedition Cms
1 EDB exploit
NA
CVE-2023-37474
Copyparty is a portable file server. Versions before 1.8.2 are subject to a path traversal vulnerability detected in the `.cpr` subfolder. The Path Traversal attack technique allows an attacker access to files, directories, and commands that reside outside the web document root d...
Copyparty Project Copyparty
655
VMScore
CVE-2015-8357
Directory traversal vulnerability in the bitrix.xscan module prior to 1.0.4 for Bitrix allows remote authenticated users to rename arbitrary files, and consequently obtain sensitive information or cause a denial of service, via a .. (dot dot) in the file parameter to admin/bitrix...
Bitrix Xscan
1 EDB exploit
NA
CVE-2024-5040
There are multiple ways in LCDS LAquis SCADA for an malicious user to access locations outside of their own directory.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »