Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-10-18 | CVE-2015-5662 | Path Traversal vulnerability in Avast Antivirus Directory traversal vulnerability in Avast before 150918-0 allows remote attackers to delete or write to arbitrary files via a crafted entry in a ZIP archive. | 6.4 |
2015-10-16 | CVE-2015-7683 | Path Traversal vulnerability in Font Project Font 7.5 Absolute path traversal vulnerability in Font.php in the Font plugin before 7.5.1 for WordPress allows remote administrators to read arbitrary files via a full pathname in the url parameter to AjaxProxy.php. | 4.0 |
2015-10-16 | CVE-2015-1807 | Path Traversal vulnerability in Jenkins Directory traversal vulnerability in Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users with certain permissions to read arbitrary files via a symlink, related to building artifacts. | 3.5 |
2015-10-16 | CVE-2015-6003 | Path Traversal vulnerability in Qnap QTS Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account. | 9.3 |
2015-10-14 | CVE-2015-7372 | Path Traversal vulnerability in Revive-Adserver Revive Adserver Directory traversal vulnerability in delivery-dev/al.php in Revive Adserver before 3.2.2 allows remote attackers to include and execute arbitrary local files via a .. | 7.5 |
2015-10-06 | CVE-2015-5650 | Path Traversal vulnerability in Ajaxplorer 2.0 Directory traversal vulnerability in AjaXplorer 2.0 allows remote attackers to read arbitrary files via unspecified vectors. | 5.0 |
2015-10-02 | CVE-2015-4546 | Path Traversal vulnerability in EMC RSA Certificate Manager and RSA Onestep Directory traversal vulnerability in EMC RSA OneStep 6.9 before build 559, as used in RSA Certificate Manager and RSA Registration Manager through 6.9 build 558 and other products, allows remote attackers to read arbitrary files via a crafted KCSOSC_ERROR_PAGE parameter. | 7.8 |
2015-09-29 | CVE-2015-7603 | Path Traversal vulnerability in Konicaminolta FTP Utility 1.0 Directory traversal vulnerability in Konica Minolta FTP Utility 1.0 allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in a RETR command. | 7.8 |
2015-09-29 | CVE-2015-7602 | Path Traversal vulnerability in Bisonware Bisonftp 3.5 Directory traversal vulnerability in BisonWare BisonFTP 3.5 allows remote attackers to read arbitrary files via a ../ (dot dot slash) in a RETR command. | 7.8 |
2015-09-29 | CVE-2015-7601 | Path Traversal vulnerability in Pcman'S FTP Server Project Pcman'S FTP Server 2.0.7 Directory traversal vulnerability in PCMan's FTP Server 2.0.7 allows remote attackers to read arbitrary files via a ..// (dot dot double slash) in a RETR command. | 7.8 |