Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2020-36488
An issue in the FTP server of Sky File v2.1.0 allows malicious users to perform directory traversal via `/null//` path commands.
Sky File Project Sky File 2.1.0
4.8
CVSSv2
CVE-2019-6447
The ES File Explorer File Manager application up to and including 4.1.9.7.4 for Android allows remote malicious users to read arbitrary files or execute applications via TCP port 59777 requests on the local Wi-Fi network. This TCP port remains open after the ES application has be...
Estrongs Es File Explorer File Manager
16 Github repositories
7.8
CVSSv2
CVE-2009-4645
Directory traversal vulnerability in web_client_user_guide.html in Accellion Secure File Transfer Appliance prior to 8_0_105 allows remote malicious users to read arbitrary files via a .. (dot dot) in the lang parameter.
Accellion Secure File Transfer Appliance 7 0 189
Accellion Secure File Transfer Appliance 7 0 259
Accellion Secure File Transfer Appliance 7 0 296
Accellion Secure File Transfer Appliance 7 0 135
Accellion Secure File Transfer Appliance 7 0 178
1 EDB exploit
9
CVSSv2
CVE-2009-4644
Accellion Secure File Transfer Appliance prior to 8_0_105 allows remote authenticated administrators to bypass the restricted shell and execute arbitrary commands via shell metacharacters to the ping command, as demonstrated by modifying the cli program.
Accellion Secure File Transfer Appliance 7 0 296
Accellion Secure File Transfer Appliance 7 0 189
Accellion Secure File Transfer Appliance 7 0 259
Accellion Secure File Transfer Appliance 7 0 135
Accellion Secure File Transfer Appliance 7 0 178
7.2
CVSSv2
CVE-2009-4648
Accellion Secure File Transfer Appliance prior to 8_0_105 does not properly restrict access to sensitive commands and arguments that run with extra sudo privileges, which allows local administrators to gain privileges via (1) arbitrary arguments in the --file_move action in /usr/...
Accellion Secure File Transfer Appliance 7 0 135
Accellion Secure File Transfer Appliance 7 0 178
Accellion Secure File Transfer Appliance 7 0 189
Accellion Secure File Transfer Appliance 7 0 259
Accellion Secure File Transfer Appliance 7 0 296
1 EDB exploit
4.3
CVSSv2
CVE-2014-8765
Multiple cross-site scripting (XSS) vulnerabilities in the Project Issue File Review module (PIFR) module 6.x-2.x prior to 6.x-2.17 for Drupal allow (1) remote malicious users to inject arbitrary web script or HTML via a crafted patch, which triggers a PIFR client to test the pat...
Drupal Project Issue File Review 6.x-2.15
Drupal Project Issue File Review 6.x-2.14
Drupal Project Issue File Review 6.x-2.12
Drupal Project Issue File Review 6.x-2.08
Drupal Project Issue File Review 6.x-2.07
Drupal Project Issue File Review 6.x-2.00
Drupal Project Issue File Review 6.x-2.05
Drupal Project Issue File Review 6.x-2.04
Drupal Project Issue File Review 6.x-2.03
Drupal Project Issue File Review 6.x-2.02
Drupal Project Issue File Review
Drupal Project Issue File Review 6.x-2.10
Drupal Project Issue File Review 6.x-2.13
Drupal Project Issue File Review 6.x-2.06
Drupal Project Issue File Review 6.x-2.01
5
CVSSv2
CVE-2014-2545
TIBCO Managed File Transfer Internet Server prior to 7.2.2, Managed File Transfer Command Center prior to 7.2.2, Slingshot prior to 1.9.1, and Vault prior to 1.0.1 allow remote malicious users to obtain sensitive information via a crafted HTTP request.
Tibco Slingshot 1.8.1
Tibco Slingshot 1.8.0
Tibco Slingshot 1.7.0
Tibco Slingshot
Tibco Vault
Tibco Managed File Transfer Command Center 6.7
Tibco Managed File Transfer Command Center
Tibco Managed File Transfer Command Center 7.0.1
Tibco Managed File Transfer Command Center 7.2.0
Tibco Managed File Transfer Command Center 7.1.0
Tibco Managed File Transfer Command Center 7.0
Tibco Managed File Transfer Internet Server 7.2.0
Tibco Managed File Transfer Internet Server 7.1.0
Tibco Managed File Transfer Internet Server 7.0
Tibco Managed File Transfer Internet Server
Tibco Managed File Transfer Internet Server 7.0.1
Tibco Managed File Transfer Internet Server 6.7
6.5
CVSSv2
CVE-2014-5324
Unrestricted file upload vulnerability in the N-Media file uploader plugin prior to 3.4 for WordPress allows remote authenticated users to execute arbitrary PHP code by leveraging Author privileges to store a file.
Najeebmedia N-media File Uploader 3.0
Najeebmedia N-media File Uploader 3.1
Najeebmedia N-media File Uploader
Najeebmedia N-media File Uploader 3.2
4.3
CVSSv2
CVE-2011-3423
Cross-site scripting (XSS) vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server prior to 7.1.1 and Managed File Transfer Command Center prior to 7.1.1, and the server in TIBCO Slingshot prior to 1.8.1, allows remote malicious users to i...
Tibco Managed File Transfer Internet Server 7.0.1
Tibco Managed File Transfer Internet Server 7.0
Tibco Managed File Transfer Command Center 7.0.1
Tibco Managed File Transfer Command Center 7.0
Tibco Managed File Transfer Internet Server 6.7
Tibco Managed File Transfer Command Center
Tibco Managed File Transfer Internet Server
Tibco Managed File Transfer Command Center 6.7
Tibco Slingshot
4.3
CVSSv2
CVE-2011-3424
Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server prior to 7.1.1 and Managed File Transfer Command Center prior to 7.1.1, and the server in TIBCO Slingshot prior to 1.8.1, allows remote malicious users to hijack web ...
Tibco Managed File Transfer Internet Server
Tibco Slingshot
Tibco Managed File Transfer Internet Server 6.7
Tibco Managed File Transfer Command Center
Tibco Managed File Transfer Command Center 7.0.1
Tibco Managed File Transfer Internet Server 7.0.1
Tibco Managed File Transfer Internet Server 7.0
Tibco Managed File Transfer Command Center 7.0
Tibco Managed File Transfer Command Center 6.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »