Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
local file inclusion vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-5757
Absolute path traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a full pathname in the dumpConfigFile function in the command parameter to cgi-bin/cgiServer.exx.
Yealink Sip-t38g -
1 EDB exploit
8.6
CVSSv3
CVE-2018-16288
LG SuperSign CMS allows reading of arbitrary files via signEzUI/playlist/edit/upload/..%2f URIs.
Lg Supersign Cms 2.5
1 EDB exploit
NA
CVE-2008-5993
Directory traversal vulnerability in image.php in Barcode Generator 1D (barcodegen) 2.0.0 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the code parameter.
Barcodephp Barcodegen 1d 1.2.4
Barcodephp Barcodegen 1d
Barcodephp Barcodegen 1d 1.3.0
1 EDB exploit
NA
CVE-2010-1935
Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE...
Openmairie Openpresse 1.01
1 EDB exploit
NA
CVE-2010-2143
Directory traversal vulnerability in index.php in Symphony CMS 2.0.7 allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the mode parameter.
Getsymphony Symphony 2.0.7
1 EDB exploit
NA
CVE-2007-3266
Directory traversal vulnerability in webif.cgi in ifnet WEBIF allows remote malicious users to include and execute arbitrary local files a .. (dot dot) in the outconfig parameter.
Ifnet Webif.cgi
1 EDB exploit
6.5
CVSSv3
CVE-2022-34125
front/icon.send.php in the CMDB plugin prior to 3.0.3 for GLPI allows malicious users to gain read access to sensitive information via a _log/ pathname in the file parameter.
Glpi-project Cmdb
NA
CVE-2011-4713
Directory traversal vulnerability in catalog/content.php in osCSS2 2.1.0 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the _ID parameter to (1) catalog/shopping_cart.php or (2) catalog/content.php.
Oscss Oscss
Oscss Oscss 1.1
Oscss Oscss 2.10
Oscss Oscss 1.2.2
Oscss Oscss 1.0
1 EDB exploit
NA
CVE-2010-4798
Directory traversal vulnerability in index.php in OrangeHRM 2.6.0.1 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the uri parameter.
Orangehrm Orangehrm 2.6.0.1
1 EDB exploit
NA
CVE-2010-4931
Directory traversal vulnerability in maincore.php in PHP-Fusion allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the folder_level parameter. NOTE: this issue has been disputed by a reliable third party
Php-fusion Php-fusion -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »