Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-08-22 | CVE-2014-5368 | Path Traversal vulnerability in WP Content Source Control Project WP Content Source Control 3.0.0 Directory traversal vulnerability in the file_get_contents function in downloadfiles/download.php in the WP Content Source Control (wp-source-control) plugin 3.0.0 and earlier for WordPress allows remote attackers to read arbitrary files via a .. | 5.0 |
2014-08-20 | CVE-2014-4929 | Path Traversal vulnerability in Owncloud Directory traversal vulnerability in the routing component in ownCloud Server before 5.0.17 and 6.0.x before 6.0.4 allows remote attackers to include and execute arbitrary local files via a .. | 6.8 |
2014-08-20 | CVE-2014-3340 | Path Traversal vulnerability in Cisco Webex Meetmenow Directory traversal vulnerability in an unspecified PHP script in the server in Cisco WebEx MeetMeNow allows remote authenticated users to read arbitrary files via a crafted request, aka Bug ID CSCuo16166. | 4.0 |
2014-08-19 | CVE-2014-5350 | Path Traversal vulnerability in Bitdefender Gravityzone 5.1.5.386 Multiple directory traversal vulnerabilities in Bitdefender GravityZone before 5.1.11.432 allow remote attackers to read arbitrary files via a (1) .. | 5.0 |
2014-08-12 | CVE-2014-1222 | Path Traversal vulnerability in Vtiger CRM Directory traversal vulnerability in kcfinder/browse.php in Vtiger CRM before 6.0.0 Security patch 1 allows remote authenticated users to read arbitrary files via a .. | 4.0 |
2014-08-12 | CVE-2014-5197 | Path Traversal vulnerability in Splunk 6.1/6.1.1/6.1.2 Directory traversal vulnerability in (1) Splunk Web or the (2) Splunkd HTTP Server in Splunk Enterprise 6.1.x before 6.1.3 allows remote authenticated users to read arbitrary files via a .. | 4.0 |
2014-08-07 | CVE-2014-3914 | Path Traversal vulnerability in Rocketsoftware Rocket Servergraph 1.2 Directory traversal vulnerability in the Admin Center for Tivoli Storage Manager (TSM) in Rocket ServerGraph 1.2 allows remote attackers to (1) create arbitrary files via a .. | 10.0 |
2014-08-07 | CVE-2014-3855 | Path Traversal vulnerability in Pyplate 0.08 Directory traversal vulnerability in download.py in Pyplate 0.08 allows remote attackers to read arbitrary files via a .. | 5.0 |
2014-08-07 | CVE-2013-6771 | Path Traversal vulnerability in Splunk Directory traversal vulnerability in the collect script in Splunk before 5.0.5 allows remote attackers to execute arbitrary commands via a .. | 9.3 |
2014-08-06 | CVE-2014-5187 | Path Traversal vulnerability in TOM M8Te Plugin Project Tom-M8Te Plugin 1.5.3 Directory traversal vulnerability in the Tom M8te (tom-m8te) plugin 1.5.3 for WordPress allows remote attackers to read arbitrary files via the file parameter to tom-download-file.php. | 5.0 |