Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
path traversal vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-23854
AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.
Aveva Intouch Access Anywhere 2020
Aveva Intouch Access Anywhere
1 EDB exploit
NA
CVE-2010-0533
Directory traversal vulnerability in AFP Server in Apple Mac OS X prior to 10.6.3 allows remote malicious users to list a share root's parent directory, and read and modify files in that directory, via unspecified vectors.
Apple Mac Os X Server
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X 10.6.0
Apple Mac Os X
Apple Mac Os X Server 10.6.1
2 Nmap scripts
7.5
CVSSv3
CVE-2022-23793
An issue exists in Joomla! 3.0.0 up to and including 3.10.6 & 4.0.0 up to and including 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.
Joomla Joomla\\!
6.5
CVSSv3
CVE-2019-1765
A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 8800 Series could allow an authenticated, remote malicious user to write arbitrary files to the filesystem. The vulnerability is due to insufficient input valida...
Cisco Ip Phone 8821 Firmware
Cisco Ip Phone 8821-ex Firmware
Cisco Ip Conference Phone 8832 Firmware
Cisco Ip Phone 8800 Firmware
6.5
CVSSv3
CVE-2020-26065
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The vulnerability is due to insufficient v...
Cisco Catalyst Sd-wan Manager 17.2.6
Cisco Catalyst Sd-wan Manager 17.2.7
Cisco Catalyst Sd-wan Manager 17.2.5
Cisco Catalyst Sd-wan Manager 18.3.1.1
Cisco Catalyst Sd-wan Manager 18.3.3.1
Cisco Catalyst Sd-wan Manager 18.3.3
Cisco Catalyst Sd-wan Manager 18.3.1
Cisco Catalyst Sd-wan Manager 18.3.0
Cisco Catalyst Sd-wan Manager 18.4.0.1
Cisco Catalyst Sd-wan Manager 18.4.3
Cisco Catalyst Sd-wan Manager 18.4.0
Cisco Catalyst Sd-wan Manager 18.4.1
Cisco Catalyst Sd-wan Manager 19.2.0
Cisco Catalyst Sd-wan Manager 19.2.097
Cisco Catalyst Sd-wan Manager 19.2.31
Cisco Catalyst Sd-wan Manager 19.2.929
Cisco Catalyst Sd-wan Manager 20.1.1.1
Cisco Catalyst Sd-wan Manager 20.1.12
Cisco Catalyst Sd-wan Manager 20.3.1
Cisco Catalyst Sd-wan Manager 17.2.8
Cisco Catalyst Sd-wan Manager 17.2.9
Cisco Catalyst Sd-wan Manager 17.2.10
6.5
CVSSv3
CVE-2021-1259
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct path traversal attacks and obtain write access to sensitive files on an affected system. The vulnerability is due to insufficient ...
Cisco Sd-wan Vmanage
NA
CVE-2010-42783
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
5.3
CVSSv3
CVE-2019-13584
The remote admin webserver on FANUC Robotics Virtual Robot Controller 8.23 allows Directory Traversal via a forged HTTP request.
Fanucamerica Robotics Virtual Robot Controller 8.23
6.7
CVSSv3
CVE-2020-3236
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to gain root shell access to the underlying operating system and overwrite or read arbitrary files. The attacker would need valid administrative c...
Cisco Enterprise Network Function Virtualization Infrastructure
6.5
CVSSv3
CVE-2020-3365
A vulnerability in the directory permissions of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to perform a directory traversal attack on a limited set of restricted directories. The vulnerability is due to a flaw in the l...
Cisco Enterprise Network Function Virtualization Infrastructure
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »