Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-02-23 | CVE-2015-1589 | Path Traversal vulnerability in Archmage Project Archmage 0.2.4 Directory traversal vulnerability in arCHMage 0.2.4 allows remote attackers to write to arbitrary files via a .. | 5.0 |
2015-02-20 | CVE-2015-0878 | Path Traversal vulnerability in Almail Al-Mail32 Directory traversal vulnerability in CREAR AL-Mail32 before 1.13d allows remote attackers to write to arbitrary files via a crafted filename of an attachment. | 5.8 |
2015-02-19 | CVE-2014-3578 | Path Traversal vulnerability in Pivotal Software Spring Framework Directory traversal vulnerability in Pivotal Spring Framework 3.x before 3.2.9 and 4.0 before 4.0.5 allows remote attackers to read arbitrary files via a crafted URL. | 5.0 |
2015-02-17 | CVE-2014-6194 | Path Traversal vulnerability in IBM products Directory traversal vulnerability in an unspecified web form in IBM Maximo Asset Management 7.1 through 7.1.1.13 and 7.5.0 before 7.5.0.6 IFIX007, Maximo Asset Management 7.5.0 through 7.5.0.3 and 7.5.1 through 7.5.1.2 for SmartCloud Control Desk, and Maximo Asset Management 7.1 through 7.1.1.13 and 7.2 for Tivoli IT Asset Management for IT and certain other products allows remote authenticated users to read arbitrary files via a .. | 4.0 |
2015-02-16 | CVE-2014-9375 | Path Traversal vulnerability in Lexmark Markvision Enterprise Directory traversal vulnerability in the LibraryFileUploadServlet servlet in Lexmark Markvision Enterprise allows remote authenticated users to write to and execute arbitrary files via a .. | 9.0 |
2015-02-13 | CVE-2014-6154 | Path Traversal vulnerability in IBM Optim Performance Manager 4.1.1/4.1.1.1/5.1.0 Directory traversal vulnerability in IBM Optim Performance Manager for DB2 4.1.0.1 through 4.1.1 on Linux, UNIX, and Windows and IBM InfoSphere Optim Performance Manager for DB2 5.1 through 5.3.1 on Linux, UNIX, and Windows allows remote attackers to access arbitrary files via a .. | 7.8 |
2015-02-11 | CVE-2015-1579 | Path Traversal vulnerability in Elegant Themes Divi Directory traversal vulnerability in the Elegant Themes Divi theme for WordPress allows remote attackers to read arbitrary files via a .. | 5.0 |
2015-02-11 | CVE-2015-1577 | Path Traversal vulnerability in Yuba U5Cms 3.9.3 Directory traversal vulnerability in u5admin/deletefile.php in u5CMS before 3.9.4 allows remote attackers to write to arbitrary files via a (1) .. | 6.4 |
2015-02-06 | CVE-2014-0605 | Path Traversal vulnerability in Attachmate Reflection FTP Client Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client before 14.1.429 allows remote attackers to execute arbitrary code via unspecified vectors to the SaveSettings method. | 10.0 |
2015-02-06 | CVE-2014-0604 | Path Traversal vulnerability in Attachmate Reflection FTP Client Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client before 14.1.429 allows remote attackers to execute arbitrary code via unspecified vectors to the StartLog method. | 10.0 |