Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-08-06 | CVE-2014-5181 | Path Traversal vulnerability in Last.Fm Rotation Plugin Project Lastfm-Rotation Plugin 1.0 Directory traversal vulnerability in lastfm-proxy.php in the Last.fm Rotation (lastfm-rotation) plugin 1.0 for WordPress allows remote attackers to read arbitrary files via a .. | 5.0 |
2014-08-03 | CVE-2013-5757 | Path Traversal vulnerability in Yealink Sip-T38G Absolute path traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a full pathname in the dumpConfigFile function in the command parameter to cgi-bin/cgiServer.exx. | 4.0 |
2014-08-03 | CVE-2013-5756 | Path Traversal vulnerability in Yealink Sip-T38G Directory traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a .. | 4.0 |
2014-07-31 | CVE-2012-6651 | Path Traversal vulnerability in Vitamin Plugin Project Vitamin 1.0.0 Multiple directory traversal vulnerabilities in the Vitamin plugin before 1.1.0 for WordPress allow remote attackers to access arbitrary files via a .. | 5.0 |
2014-07-29 | CVE-2014-5115 | Path Traversal vulnerability in Dirphp Project Dirphp 1.0 Absolute path traversal vulnerability in DirPHP 1.0 allows remote attackers to read arbitrary files via a full pathname in the phpfile parameter to index.php. | 5.0 |
2014-07-29 | CVE-2014-0475 | Path Traversal vulnerability in GNU Glibc Multiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. | 6.8 |
2014-07-28 | CVE-2014-5111 | Path Traversal vulnerability in Netfortris Trixbox Multiple directory traversal vulnerabilities in Fonality trixbox allow remote attackers to read arbitrary files via a .. | 5.0 |
2014-07-26 | CVE-2014-2626 | Path Traversal vulnerability in HP Network Virtualization 8.6 Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to create files, and consequently execute arbitrary code, via crafted input, aka ZDI-CAN-2024. | 9.4 |
2014-07-26 | CVE-2014-2625 | Path Traversal vulnerability in HP Network Virtualization 8.6 Directory traversal vulnerability in the storedNtxFile function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to read arbitrary files via crafted input, aka ZDI-CAN-2023. | 8.5 |
2014-07-24 | CVE-2014-4910 | Path Traversal vulnerability in X Xf86-Video-Intel 2.99.911 Directory traversal vulnerability in tools/backlight_helper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. | 4.6 |