Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
directory pro vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2004-0059
Directory traversal vulnerability in upload capability of WWW File Share Pro 2.42 and previous versions allows remote malicious users to overwrite arbitrary files via .. (dot dot) sequences in the filename parameter of a Content-Disposition: header.
Lionmax Software Www File Share Pro
7.5
CVSSv2
CVE-2004-0061
WWW File Share Pro 2.42 and previous versions allows remote malicious users to bypass directory access restrictions via (1) a URL with a trailing . (dot), or (2) a URI with a leading slash or backslash character.
Lionmax Software Www File Share Pro
4.3
CVSSv2
CVE-2006-5963
Directory traversal vulnerability in PentaZip 8.5.1.190 and PentaSuite-PRO 8.5.1.221 allows user-assisted remote malicious users to extract files to arbitrary pathnames via a ../ (dot dot slash) in a filename.
Pentaware Pentasuite-pro 8.5.1.221
Pentaware Pentazip 8.5.1.190
NA
CVE-2022-41667
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that allows adversaries with local user privileges to load a malicious DLL which could lead to execution of malicious code. Affected Products: EcoStruxure Opera...
Schneider-electric Ecostruxure Operator Terminal Expert
Schneider-electric Pro-face Blue
Schneider-electric Pro-face Blue 3.3
Schneider-electric Ecostruxure Operator Terminal Expert 3.3
NA
CVE-2022-41670
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in the SGIUtility component that allows adversaries with local user privileges to load malicious DLL which could result in execution of malicious code. Affected...
Schneider-electric Ecostruxure Operator Terminal Expert 3.3
Schneider-electric Ecostruxure Operator Terminal Expert
Schneider-electric Pro-face Blue 3.3
Schneider-electric Pro-face Blue
3.6
CVSSv2
CVE-2005-1902
Directory traversal vulnerability in the IMAP service for SPA-PRO Mail @Solomon 4.00 allows remote authenticated users to read other users' mail and perform operations on arbitrary directories via .. sequences in the (1) SELECT, (2) CREATE, (3) DELETE, and (4) RENAME command...
E-post Corporation Spa-pro Mail Atsolomon 4.00
6.8
CVSSv2
CVE-2018-0667
Untrusted search path vulnerability in Installer of INplc SDK Express 3.08 and previous versions and Installer of INplc SDK Pro+ 3.08 and previous versions allows an malicious user to gain privileges via a Trojan horse DLL in an unspecified directory.
Mnc Inplc-rt Sdk Express
Mnc Inplc Sdk Pro\\+
6.9
CVSSv2
CVE-2012-4880
Multiple untrusted search path vulnerabilities in DVD Architect Pro 5.2 Build 133 and DVD Architect Studio 5.0 Build 156 allow local users to gain privileges via a Trojan horse (1) enc_mp2v.200 or (2) CFHDDecoder.dll file in the current working directory, as demonstrated by a dir...
Sony Dvd Architect Studio 5.0
Sony Dvd Architect Pro 5.2
6.5
CVSSv2
CVE-2021-24962
The WordPress File Upload Free and Pro WordPress plugins prior to 4.16.3 allow users with a role as low as Contributor to perform path traversal via a shortcode argument, which can then be used to upload a PHP code disguised as an image inside the auto-loaded directory of the plu...
Iptanus Wordpress File Upload
Iptanus Wordpress File Upload Pro
5
CVSSv2
CVE-2001-0075
Directory traversal vulnerability in main.cgi in Technote allows remote malicious users to read arbitrary files via a .. (dot dot) attack in the filename parameter.
Technote Inc Technote 2000
Technote Inc Technote 2001
Technote Inc Technote Pro
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »