Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-12-24 | CVE-2014-6155 | Path Traversal vulnerability in IBM Websphere Service Registry and Repository Multiple directory traversal vulnerabilities in the ServiceRegistry UI in IBM WebSphere Service Registry and Repository (WSRR) 7.5.x through 7.5.0.4, 8.0.x before 8.0.0.3, and 8.5.x before 8.5.0.1 allow remote authenticated users to read arbitrary files via unspecified vectors. | 4.0 |
2014-12-20 | CVE-2014-8019 | Path Traversal vulnerability in Cisco Enterprise Content Delivery System Directory traversal vulnerability in Cisco Enterprise Content Delivery System (ECDS) allows remote attackers to read arbitrary files via a crafted URL, aka Bug ID CSCuo90148. | 5.0 |
2014-12-17 | CVE-2014-6182 | Path Traversal vulnerability in IBM Business Process Manager Directory traversal vulnerability in an export function in the Process Center in IBM Business Process Manager (BPM) 8.0.x through 8.0.1.3 and 8.5.x through 8.5.5 allows remote authenticated users to read arbitrary files via a .. | 4.0 |
2014-12-16 | CVE-2014-9373 | Path Traversal vulnerability in Manageengine Netflow Analyzer Directory traversal vulnerability in the CollectorConfInfoServlet servlet in ManageEngine NetFlow Analyzer allows remote attackers to execute arbitrary code via a .. | 10.0 |
2014-12-16 | CVE-2014-9372 | Path Traversal vulnerability in Manageengine Password Manager PRO Directory traversal vulnerability in the UploadAccountActivities servlet in ManageEngine Password Manager Pro (PMP) before 7103 allows remote attackers to delete arbitrary files via a .. | 6.4 |
2014-12-16 | CVE-2014-5359 | Path Traversal vulnerability in Safenet-Inc Safenet Authentication Service Outlook web Access Agent 1.03.20212 Directory traversal vulnerability in SafeNet Authentication Service (SAS) Outlook Web Access Agent (formerly CRYPTOCard) before 1.03.30109 allows remote attackers to read arbitrary files via a .. | 7.8 |
2014-12-10 | CVE-2014-7866 | Path Traversal vulnerability in Zohocorp products Multiple directory traversal vulnerabilities in ZOHO ManageEngine OpManager 8 (build 88xx) through 11.4, IT360 10.3 and 10.4, and Social IT Plus 11.0 allow remote attackers or remote authenticated users to write and execute arbitrary files via a .. | 7.5 |
2014-12-04 | CVE-2014-6036 | Path Traversal vulnerability in Zohocorp products Directory traversal vulnerability in the multipartRequest servlet in ZOHO ManageEngine OpManager 11.3 and earlier, Social IT Plus 11.0, and IT360 10.3, 10.4, and earlier allows remote attackers or remote authenticated users to delete arbitrary files via a .. | 6.4 |
2014-12-04 | CVE-2014-6035 | Path Traversal vulnerability in Zohocorp Manageengine Opmanager 11.4 Directory traversal vulnerability in the FileCollector servlet in ZOHO ManageEngine OpManager 11.4, 11.3, and earlier allows remote attackers to write and execute arbitrary files via a .. | 7.5 |
2014-12-04 | CVE-2014-6034 | Path Traversal vulnerability in Zohocorp products Directory traversal vulnerability in the com.me.opmanager.extranet.remote.communication.fw.fe.FileCollector servlet in ZOHO ManageEngine OpManager 8.8 through 11.3, Social IT Plus 11.0, and IT360 10.4 and earlier allows remote attackers or remote authenticated users to write to and execute arbitrary WAR files via a .. | 5.0 |