Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-11-04 | CVE-2010-4181 | Path Traversal vulnerability in Yaws 1.89 Directory traversal vulnerability in Yaws 1.89 allows remote attackers to read arbitrary files via ..\ (dot dot backslash) and other sequences. | 5.0 |
2010-11-03 | CVE-2010-4154 | Path Traversal vulnerability in Rhinosoft FTP Voyager Directory traversal vulnerability in Rhino Software, Inc. | 9.3 |
2010-11-03 | CVE-2010-4153 | Path Traversal vulnerability in Crossftp PRO Directory traversal vulnerability in CrossFTP Pro 1.65a, and probably earlier, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename. | 9.3 |
2010-11-02 | CVE-2010-4149 | Path Traversal vulnerability in Freshwebmaster Fresh FTP 5.36 Directory traversal vulnerability in FreshWebMaster Fresh FTP 5.36, 5.37, and possibly earlier, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename. | 9.3 |
2010-11-02 | CVE-2010-4148 | Path Traversal vulnerability in Anyconnect Directory traversal vulnerability in AnyConnect 1.2.3.0, and possibly earlier, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename. | 9.3 |
2010-10-28 | CVE-2010-3842 | Path Traversal vulnerability in Curl 7.20.0/7.20.1/7.21.1 Absolute path traversal vulnerability in curl 7.20.0 through 7.21.1, when the --remote-header-name or -J option is used, allows remote servers to create or overwrite arbitrary files by using \ (backslash) as a separator of path components within the Content-disposition HTTP header. | 5.8 |
2010-10-26 | CVE-2010-4095 | Path Traversal vulnerability in Robo-Ftp 3.7.3/3.7.4 Directory traversal vulnerability in the FTP client in Serengeti Systems Incorporated Robo-FTP 3.7.3, and probably other versions before 3.7.5, allows remote FTP servers to write arbitrary files via a .. | 9.3 |
2010-10-19 | CVE-2008-7262 | Path Traversal vulnerability in G.Rodola Pyftpdlib 0.1/0.1.1 Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command. | 6.5 |
2010-10-19 | CVE-2007-6736 | Path Traversal vulnerability in G.Rodola Pyftpdlib 0.1 Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.2.0 allow remote authenticated users to access arbitrary files and directories via a .. | 6.5 |
2010-10-08 | CVE-2010-3743 | Path Traversal vulnerability in Rene Tegel Visual Synapse 0.50/1.0 Directory traversal vulnerability in Visual Synapse HTTP Server 1.0 RC1 through RC3, and 0.60 and earlier, allows remote attackers to read arbitrary files via a .. | 5.0 |