Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-07-10 | CVE-2015-2970 | Path Traversal vulnerability in Lemon-S PHP Simple Oekaki index.php in LEMON-S PHP Simple Oekaki BBS before 1.21 allows remote attackers to delete arbitrary files via the oekakis parameter. | 6.4 |
2015-07-08 | CVE-2015-4616 | Path Traversal vulnerability in Easy2Map Project Easy2Map Directory traversal vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.2.5 for WordPress allows remote attackers to create arbitrary files via a .. | 5.0 |
2015-07-01 | CVE-2015-5353 | Path Traversal vulnerability in Novius-Os Novius OS 5.0.1 Directory traversal vulnerability in Novius OS 5.0.1 (Elche) allows remote attackers to include and execute arbitrary local files via a .. | 7.5 |
2015-07-01 | CVE-2014-1836 | Path Traversal vulnerability in Impresscms Absolute path traversal vulnerability in htdocs/libraries/image-editor/image-edit.php in ImpressCMS before 1.3.6 allows remote attackers to delete arbitrary files via a full pathname in the image_path parameter in a cancel action. | 6.4 |
2015-06-30 | CVE-2015-2966 | Path Traversal vulnerability in Droidwareuk Explorer+ File Manager Directory traversal vulnerability in the Droidware UK Explorer+ File Manager application before 2.3.3 for Android allows remote attackers to write to arbitrary files via unspecified vectors. | 6.4 |
2015-06-30 | CVE-2015-5149 | Path Traversal vulnerability in Zohocorp Manageengine Supportcenter Plus 7.90 Directory traversal vulnerability in Zoho ManageEngine SupportCenter Plus 7.90 allows remote authenticated users to write to arbitrary files via a .. | 5.5 |
2015-06-30 | CVE-2014-9734 | Path Traversal vulnerability in Themepunch Slider Revolution 3.0.95/4.1.4 Directory traversal vulnerability in the Slider Revolution (revslider) plugin before 4.2 for WordPress allows remote attackers to read arbitrary files via a .. | 5.0 |
2015-06-28 | CVE-2015-2965 | Path Traversal vulnerability in Oscommerce Directory traversal vulnerability in osCommerce Japanese 2.2ms1j-R8 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors. | 4.0 |
2015-06-28 | CVE-2015-0550 | Path Traversal vulnerability in EMC Documentum Thumbnail Server Directory traversal vulnerability in EMC Documentum Thumbnail Server 6.7SP1 before P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P01 allows remote attackers to bypass intended Content Server access restrictions via unspecified vectors. | 8.5 |
2015-06-28 | CVE-2015-1884 | Path Traversal vulnerability in IBM Business Process Manager and Websphere Directory traversal vulnerability in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 through 8.5.5.0 and WebSphere Lombardi Edition (WLE) 7.2 through 7.2.0.5 allows remote authenticated users to read arbitrary files via a crafted internationalization-file URL. | 4.0 |