Total
7851 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2010-0958 | 1 Thomas Perez | 1 Tribisur | 2025-04-11 | N/A |
| Directory traversal vulnerability in modules/hayoo/index.php in Tribisur 2.1, 2.0, and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary files via directory traversal sequences in the theme parameter. NOTE: some of these details are obtained from third party information. | ||||
| CVE-2010-0953 | 1 Phpcoin | 1 Phpcoin | 2025-04-11 | N/A |
| Directory traversal vulnerability in mod.php in phpCOIN 1.2.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the mod parameter. | ||||
| CVE-2011-5028 | 1 Novell | 1 Sentinel Log Manager | 2025-04-11 | N/A |
| Directory traversal vulnerability in novelllogmanager/FileDownload in Novell Sentinel Log Manager 1.2.0.1_938 and earlier, as used in Novell Sentinel before 7.0.1.0, allows remote authenticated users to read arbitrary files via a .. (dot dot) in the filename parameter. | ||||
| CVE-2011-4880 | 1 Atvise | 1 Webmi2ads | 2025-04-11 | N/A |
| Directory traversal vulnerability in the web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to read arbitrary files via a crafted HTTP request. | ||||
| CVE-2011-4832 | 1 Caupo | 2 Cauposhop Classic, Cauposhop Pro | 2025-04-11 | N/A |
| Directory traversal vulnerability in CaupoShop Pro 2.x, CaupoShop Classic 3.01, and CaupoShop Pro 3.70 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the template parameter in a template action. | ||||
| CVE-2011-4831 | 1 David Azoulay | 1 Web File Browser | 2025-04-11 | N/A |
| Directory traversal vulnerability in webFileBrowser.php in Web File Browser 0.4b14 allows remote authenticated users to read arbitrary files via a ..%2f (encoded dot dot) in the file parameter in a download action. | ||||
| CVE-2011-4717 | 1 Zftpserver | 1 Zftpserver Suite | 2025-04-11 | N/A |
| Directory traversal vulnerability in zFTPServer Suite 6.0.0.52 allows remote authenticated users to delete arbitrary directories via a crafted RMD (aka rmdir) command. | ||||
| CVE-2011-4711 | 1 Namazu | 1 Namazu | 2025-04-11 | N/A |
| Multiple directory traversal vulnerabilities in namazu.cgi in Namazu before 2.0.16 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) lang or (2) result parameter. | ||||
| CVE-2010-2259 | 2 Joomla, Tamlyncreative | 4 Joomla\!, Com Bfsurvey Basic, Com Bfsurvey Pro and 1 more | 2025-04-11 | N/A |
| Directory traversal vulnerability in the BF Survey (com_bfsurvey) component for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php. | ||||
| CVE-2011-4712 | 1 Monoxide0184 | 1 Oxide Webserver | 2025-04-11 | N/A |
| Directory traversal vulnerability in Oxide WebServer allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in an HTTP request. | ||||
| CVE-2011-4643 | 1 Splunk | 1 Splunk | 2025-04-11 | N/A |
| Multiple directory traversal vulnerabilities in Splunk 4.x before 4.2.5 allow remote authenticated users to read arbitrary files via a .. (dot dot) in a URI to (1) Splunk Web or (2) the Splunkd HTTP Server, aka SPL-45243. | ||||
| CVE-2013-7091 | 1 Synacor | 1 Zimbra Collaboration Suite | 2025-04-11 | N/A |
| Directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Zimbra 7.2.2 and 8.0.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the skin parameter. NOTE: this can be leveraged to execute arbitrary code by obtaining LDAP credentials and accessing the service/admin/soap API. | ||||
| CVE-2011-4168 | 1 Hp | 1 Managed Printing Administration | 2025-04-11 | N/A |
| Directory traversal vulnerability in hpmpa/jobDelivery/Default.asp in HP Managed Printing Administration before 2.6.4 allows remote attackers to create arbitrary files via crafted form data. | ||||
| CVE-2011-4166 | 1 Hp | 1 Managed Printing Administration | 2025-04-11 | N/A |
| Directory traversal vulnerability in the MPAUploader.Uploader.1.UploadFiles method in HP Managed Printing Administration before 2.6.4 allows remote attackers to create arbitrary files via crafted form data. | ||||
| CVE-2013-6688 | 1 Cisco | 1 Unified Communications Manager | 2025-04-11 | N/A |
| Directory traversal vulnerability in the license-upload interface in the Enterprise License Manager (ELM) component in Cisco Unified Communications Manager 9.1(1) and earlier allows remote authenticated users to create arbitrary files via a crafted path, aka Bug ID CSCui58222. | ||||
| CVE-2012-4997 | 1 Anecms | 1 Anecms | 2025-04-11 | N/A |
| Directory traversal vulnerability in acp/index.php in AneCMS allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter. | ||||
| CVE-2011-3837 | 1 Wuzly | 1 Wuzly | 2025-04-11 | N/A |
| Directory traversal vulnerability in blog_system/data_functions.php in Wuzly 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the preview parameter to index.php. | ||||
| CVE-2011-3500 | 1 Cogentdatahub | 1 Cogent Datahub | 2025-04-11 | N/A |
| Directory traversal vulnerability in the web server in Cogent DataHub 7.1.1.63 and earlier allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in an HTTP request. | ||||
| CVE-2011-3495 | 1 Measuresoft | 1 Scadapro | 2025-04-11 | N/A |
| Multiple directory traversal vulnerabilities in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to read, modify, or delete arbitrary files via the (1) RF, (2) wF, (3) UF, or (4) NF command. | ||||
| CVE-2011-3357 | 1 Mantisbt | 1 Mantisbt | 2025-04-11 | N/A |
| Directory traversal vulnerability in bug_actiongroup_ext_page.php in MantisBT before 1.2.8 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the action parameter, related to bug_actiongroup_page.php. | ||||