Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
path traversal vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0533
Directory traversal vulnerability in AFP Server in Apple Mac OS X prior to 10.6.3 allows remote malicious users to list a share root's parent directory, and read and modify files in that directory, via unspecified vectors.
Apple Mac Os X Server
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X 10.6.0
Apple Mac Os X
Apple Mac Os X Server 10.6.1
2 Nmap scripts
7.5
CVSSv3
CVE-2022-23854
AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.
Aveva Intouch Access Anywhere 2020
Aveva Intouch Access Anywhere
1 EDB exploit
NA
CVE-2014-3317
Directory traversal vulnerability in the Multiple Analyzer in the Dialed Number Analyzer (DNA) component in Cisco Unified Communications Manager 10.0(1) allows remote authenticated users to delete arbitrary files via a crafted URL, aka Bug ID CSCup76314.
Cisco Unified Communications Manager 10.0\\(1\\)
NA
CVE-2010-0396
Directory traversal vulnerability in the dpkg-source component in dpkg prior to 1.14.29 allows remote malicious users to modify arbitrary files via a crafted Debian source archive.
Debian Dpkg
Debian Dpkg 1.14.27
Debian Dpkg 1.14.19
Debian Dpkg 1.14.18
Debian Dpkg 1.14.16.1
Debian Dpkg 1.14.16
Debian Dpkg 1.14.9
Debian Dpkg 1.14.8
Debian Dpkg 1.14.7
Debian Dpkg 1.14.0
Debian Dpkg 1.13.25
Debian Dpkg 1.13.18
Debian Dpkg 1.13.17
Debian Dpkg 1.13.11
Debian Dpkg 1.13.10
Debian Dpkg 1.13.9
Debian Dpkg 1.13.2
Debian Dpkg 1.13.1
Debian Dpkg 1.10.23
Debian Dpkg 1.10.22
Debian Dpkg 1.10.15
Debian Dpkg 1.10.14
8.1
CVSSv3
CVE-2018-0464
A vulnerability in Cisco Data Center Network Manager software could allow an authenticated, remote malicious user to conduct directory traversal attacks and gain access to sensitive files on the targeted system. The vulnerability is due to improper validation of user requests wit...
Cisco Prime Data Center Network Manager 6.3\\(1\\)
Cisco Prime Data Center Network Manager 10.2
Cisco Prime Data Center Network Manager 7.0\\(1\\)
Cisco Prime Data Center Network Manager 7.0\\(2\\)
Cisco Prime Data Center Network Manager 7.1\\(1\\)
Cisco Prime Data Center Network Manager 10.0
Cisco Prime Data Center Network Manager 6.3\\(2\\)
Cisco Prime Data Center Network Manager 10.1
Cisco Prime Data Center Network Manager 10.3\\(1\\)
NA
CVE-2024-31860
Improper Input Validation vulnerability in Apache Zeppelin. By adding relative path indicators(E.g ..), attackers can see the contents for any files in the filesystem that the server account can access. This issue affects Apache Zeppelin: from 0.9.0 prior to 0.11.0. Users are rec...
NA
CVE-2015-7254
Directory traversal vulnerability on Huawei HG532e, HG532n, and HG532s devices allows remote malicious users to read arbitrary files via a .. (dot dot) in an icon/ URI.
Huawei Hg532s -
Huawei Hg532e -
Huawei Hg532n -
6.5
CVSSv3
CVE-2019-1765
A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 8800 Series could allow an authenticated, remote malicious user to write arbitrary files to the filesystem. The vulnerability is due to insufficient input valida...
Cisco Ip Phone 8821 Firmware
Cisco Ip Phone 8821-ex Firmware
Cisco Ip Conference Phone 8832 Firmware
Cisco Ip Phone 8800 Firmware
NA
CVE-2010-42783
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
NA
CVE-2010-42792
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »