Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
path traversal vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-23854
AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.
Aveva Intouch Access Anywhere 2020
Aveva Intouch Access Anywhere
1 EDB exploit
NA
CVE-2015-1197
cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive.
Gnu Cpio 2.11
1 Metasploit module
1 Article
NA
CVE-2010-0533
Directory traversal vulnerability in AFP Server in Apple Mac OS X prior to 10.6.3 allows remote malicious users to list a share root's parent directory, and read and modify files in that directory, via unspecified vectors.
Apple Mac Os X Server
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X 10.6.0
Apple Mac Os X
Apple Mac Os X Server 10.6.1
2 Nmap scripts
7.5
CVSSv3
CVE-2018-15535
/filemanager/ajax_calls.php in tecrail Responsive FileManager prior to 9.13.4 uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize get_file sequences such as ".." that can resolve to a location tha...
Tecrail Responsive Filemanager
1 EDB exploit
5.5
CVSSv3
CVE-2018-15536
/filemanager/ajax_calls.php in tecrail Responsive FileManager prior to 9.13.4 does not properly validate file paths in archives, allowing for the extraction of crafted archives to overwrite arbitrary files via an extract action, aka Directory Traversal.
Tecrail Responsive Filemanager
1 EDB exploit
7.1
CVSSv3
CVE-2019-10717
BlogEngine.NET 3.3.7.0 allows /api/filemanager Directory Traversal via the path parameter.
Dotnetblogengine Blogengine.net 3.3.7.0
6.5
CVSSv3
CVE-2021-1259
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct path traversal attacks and obtain write access to sensitive files on an affected system. The vulnerability is due to insufficient ...
Cisco Sd-wan Vmanage
6.7
CVSSv3
CVE-2019-1952
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to overwrite or read arbitrary files. The attacker would need valid administrator privilege-level credentials. This vulnerability is due to improp...
Cisco Enterprise Network Function Virtualization Infrastructure
NA
CVE-2019-34753
Micro Focus Filr version 3.4.0.217 suffers from privilege escalation and path traversal vulnerabilities.
8.1
CVSSv3
CVE-2018-0464
A vulnerability in Cisco Data Center Network Manager software could allow an authenticated, remote malicious user to conduct directory traversal attacks and gain access to sensitive files on the targeted system. The vulnerability is due to improper validation of user requests wit...
Cisco Prime Data Center Network Manager 6.3\\(1\\)
Cisco Prime Data Center Network Manager 10.2
Cisco Prime Data Center Network Manager 7.0\\(1\\)
Cisco Prime Data Center Network Manager 7.0\\(2\\)
Cisco Prime Data Center Network Manager 7.1\\(1\\)
Cisco Prime Data Center Network Manager 10.0
Cisco Prime Data Center Network Manager 6.3\\(2\\)
Cisco Prime Data Center Network Manager 10.1
Cisco Prime Data Center Network Manager 10.3\\(1\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »