Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
path traversal vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-3383
A vulnerability in the archive utility of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote malicious user to conduct directory traversal attacks on an affected device. The vulnerability is due to a lack of proper input validation of paths that are emb...
Cisco Data Center Network Manager
6.5
CVSSv3
CVE-2020-3401
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The vulnerability is due to insufficient v...
Cisco Sd-wan Firmware
NA
CVE-2022-07792
WordPress User Meta Lite and Pro plugin versions 2.4.3 and below suffer from a path traversal vulnerability.
4.3
CVSSv3
CVE-2022-22931
Fix of CVE-2021-40525 do not prepend delimiters upon valid directory validations. Affected implementations include: - maildir mailbox store - Sieve file repository This enables a user to access other users data stores (limited to user names being prefixed by the value of the user...
Apache James 3.6.1
7.2
CVSSv3
CVE-2019-15982
Multiple vulnerabilities in the REST and SOAP API endpoints and the Application Framework feature of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote malicious user to conduct directory traversal attacks on an affected device. To exploit these vulnera...
Cisco Data Center Network Manager
6.5
CVSSv3
CVE-2020-1853
GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage.
Huawei Gaussdb 200 6.5.1
NA
CVE-2010-0396
Directory traversal vulnerability in the dpkg-source component in dpkg prior to 1.14.29 allows remote malicious users to modify arbitrary files via a crafted Debian source archive.
Debian Dpkg
Debian Dpkg 1.14.27
Debian Dpkg 1.14.19
Debian Dpkg 1.14.18
Debian Dpkg 1.14.16.1
Debian Dpkg 1.14.16
Debian Dpkg 1.14.9
Debian Dpkg 1.14.8
Debian Dpkg 1.14.7
Debian Dpkg 1.14.0
Debian Dpkg 1.13.25
Debian Dpkg 1.13.18
Debian Dpkg 1.13.17
Debian Dpkg 1.13.11
Debian Dpkg 1.13.10
Debian Dpkg 1.13.9
Debian Dpkg 1.13.2
Debian Dpkg 1.13.1
Debian Dpkg 1.10.23
Debian Dpkg 1.10.22
Debian Dpkg 1.10.15
Debian Dpkg 1.10.14
NA
CVE-2022-07792022
WordPress User Meta Lite and Pro plugin versions 2.4.3 and below suffer from a path traversal vulnerability.
6.3
CVSSv3
CVE-2013-1429
Lintian prior to 2.5.12 allows remote malicious users to gather information about the "host" system using crafted symlinks.
Debian Lintian 2.5.11
Debian Lintian
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 12.04
6.7
CVSSv3
CVE-2019-1952
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to overwrite or read arbitrary files. The attacker would need valid administrator privilege-level credentials. This vulnerability is due to improp...
Cisco Enterprise Network Function Virtualization Infrastructure
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »