Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
path traversal vulnerabilities and exploits
(subscribe to this query)
655
VMScore
CVE-2015-8357
Directory traversal vulnerability in the bitrix.xscan module prior to 1.0.4 for Bitrix allows remote authenticated users to rename arbitrary files, and consequently obtain sensitive information or cause a denial of service, via a .. (dot dot) in the file parameter to admin/bitrix...
Bitrix Xscan
1 EDB exploit
NA
CVE-2023-37474
Copyparty is a portable file server. Versions before 1.8.2 are subject to a path traversal vulnerability detected in the `.cpr` subfolder. The Path Traversal attack technique allows an attacker access to files, directories, and commands that reside outside the web document root d...
Copyparty Project Copyparty
NA
CVE-2013-16053
Core Security Technologies Advisory - MayGion IP cameras suffer from path traversal and buffer overflow vulnerabilities.
356
VMScore
CVE-2021-34701
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&...
Cisco Unified Communications Manager
Cisco Unified Communications Manager Im And Presence Service
Cisco Unity Connection
578
VMScore
CVE-2020-11531
The DataEngine Xnode Server application in Zoho ManageEngine DataSecurity Plus before 6.0.1 does not validate the database schema name when handling a DR-SCHEMA-SYNC request. This allows an authenticated malicious user to execute code in the context of the product by writing a JS...
Zohocorp Manageengine Adaudit Plus
Zohocorp Manageengine Datasecurity Plus
NA
CVE-2022-20962
A vulnerability in the Localdisk Management feature of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to make unauthorized changes to the file system of an affected device. This vulnerability is due to insufficient input validation. An at...
Cisco Identity Services Engine 3.1
NA
CVE-2021-1132
A vulnerability in the API subsystem and in the web-management interface of Cisco Network Services Orchestrator (NSO) could allow an unauthenticated, remote attacker to access sensitive data. This vulnerability exists because the web-management interface and certain HTTP-based AP...
NA
CVE-2023-20167
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated malicious user to perform path traversal attacks on the underlying operating system to either elevate privileges to root or read arbitrary files. To exploit these vulnerabilities, an att...
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
Cisco Identity Services Engine
561
VMScore
CVE-2013-6688
Directory traversal vulnerability in the license-upload interface in the Enterprise License Manager (ELM) component in Cisco Unified Communications Manager 9.1(1) and previous versions allows remote authenticated users to create arbitrary files via a crafted path, aka Bug ID CSCu...
Cisco Unified Communications Manager 8.6\\(1a\\)
Cisco Unified Communications Manager 8.6\\(1\\)
Cisco Unified Communications Manager 8.6
Cisco Unified Communications Manager 8.5\\(1\\)su5
Cisco Unified Communications Manager 8.0\\(2b\\)
Cisco Unified Communications Manager 8.0\\(2a\\)
Cisco Unified Communications Manager 8.0\\(2\\)
Cisco Unified Communications Manager 8.0\\(1\\)
Cisco Unified Communications Manager 7.1\\(5\\)
Cisco Unified Communications Manager 7.1\\(3b\\)su2
Cisco Unified Communications Manager 7.1\\(3b\\)su1
Cisco Unified Communications Manager 7.1\\(3b\\)
Cisco Unified Communications Manager 7.1\\(3a\\)su1a
Cisco Unified Communications Manager 7.0\\(1\\)su1
Cisco Unified Communications Manager 6.1\\(5\\)su3
Cisco Unified Communications Manager 6.1\\(5\\)su2
Cisco Unified Communications Manager 6.1\\(5\\)su1
Cisco Unified Communications Manager 6.1\\(1a\\)
Cisco Unified Communications Manager 6.1\\(1\\)
Cisco Unified Communications Manager 6.0\\(1b\\)
Cisco Unified Communications Manager 6.0\\(1a\\)
Cisco Unified Communications Manager 5.1\\(1\\)
641
VMScore
CVE-2019-12666
A vulnerability in the Guest Shell of Cisco IOS XE Software could allow an authenticated, local malicious user to perform directory traversal on the base Linux operating system of Cisco IOS XE Software. The vulnerability is due to incomplete validation of certain commands. An att...
Cisco Ios Xe
Cisco Ios Xe 16.11.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »