Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-07-05 | CVE-2012-0410 | Path Traversal vulnerability in Novell Groupwise Directory traversal vulnerability in WebAccess in Novell GroupWise before 8.03 allows remote attackers to read arbitrary files via the User.interface parameter. | 5.0 |
2012-07-05 | CVE-2012-2560 | Path Traversal vulnerability in Wellintech Kingview Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001. | 5.0 |
2012-07-03 | CVE-2012-2181 | Path Traversal vulnerability in IBM Websphere Portal 7.0.0.1/7.0.0.2/8.0 Directory traversal vulnerability in the Dojo module in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF14, and 8.0, allows remote attackers to read arbitrary files via a crafted URL. | 5.0 |
2012-06-22 | CVE-2012-0186 | Path Traversal vulnerability in IBM Lotus Expeditor Directory traversal vulnerability in the Eclipse Help component in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows remote attackers to discover the locations of files via a crafted URL. | 4.3 |
2012-06-19 | CVE-2012-3588 | Path Traversal vulnerability in Wordpress Plugin Newsletter Plugin 1.5 Directory traversal vulnerability in preview.php in the Plugin Newsletter plugin 1.5 for WordPress allows remote attackers to read arbitrary files via a .. | 5.0 |
2012-06-08 | CVE-2012-2597 | Path Traversal vulnerability in Siemens Wincc 7.0 Multiple directory traversal vulnerabilities in Siemens WinCC 7.0 SP3 before Update 2 allow remote authenticated users to read arbitrary files via a crafted parameter in a URL. | 4.0 |
2012-05-27 | CVE-2012-2435 | Path Traversal vulnerability in Pligg CMS Directory traversal vulnerability in the captcha module in Pligg CMS before 1.2.2 allows remote authenticated users to include and execute arbitrary local files via a .. | 6.5 |
2012-05-23 | CVE-2012-0294 | Path Traversal vulnerability in Symantec Endpoint Protection 12.1/12.1.1000/12.1.671 Directory traversal vulnerability in the Manager service in the management console in Symantec Endpoint Protection (SEP) 12.1 before 12.1 RU1-MP1 allows remote attackers to delete files via unspecified vectors. | 5.8 |
2012-05-21 | CVE-2012-2919 | Path Traversal vulnerability in Chevereto 1.91 Directory traversal vulnerability in Upload/engine.php in Chevereto 1.9.1 allows remote attackers to determine the existence of arbitrary files via a .. | 5.0 |
2012-05-21 | CVE-2010-5102 | Path Traversal vulnerability in Typo3 Directory traversal vulnerability in mod/tools/em/class.em_unzip.php in the unzip library in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allows remote attackers to write arbitrary files via unspecified vectors. | 5.0 |