Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-02-10 | CVE-2009-0457 | Path Traversal vulnerability in Magtrb AJA Portal 1.2 Multiple directory traversal vulnerabilities in AJA Portal 1.2 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the currentlang parameter to admin/case.php in the (1) Contact_Plus and (2) Reviews modules, and (3) the module_name parameter to admin/includes/FANCYNLOptions.php in the Fancy_NewsLetter module. | 7.5 |
2009-02-10 | CVE-2009-0448 | Path Traversal vulnerability in Syntax Desktop Syntax Desktop 2.7 Directory traversal vulnerability in admin/modules/aa/preview.php in Syntax Desktop 2.7 allows remote attackers to include and execute arbitrary local files via a .. | 7.5 |
2009-02-10 | CVE-2009-0442 | Path Traversal vulnerability in PHPbbbook 1.3/1.3H Directory traversal vulnerability in bbcode.php in PHPbbBook 1.3 and 1.3h allows remote attackers to include and execute arbitrary local files via a .. | 6.8 |
2009-02-10 | CVE-2009-0497 | Path Traversal vulnerability in Igniterealtime Openfire 3.6.2 Directory traversal vulnerability in log.jsp in Ignite Realtime Openfire 3.6.2 allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the log parameter. | 5.0 |
2009-02-06 | CVE-2008-6090 | Path Traversal vulnerability in Scriptsez Mini Hosting Panel Directory traversal vulnerability in members.php in ScriptsEz Mini Hosting Panel allows remote attackers to read arbitrary local files via a .. | 4.3 |
2009-02-06 | CVE-2008-6089 | Path Traversal vulnerability in Scriptsez Easy Image Downloader Directory traversal vulnerability in main.php in ScriptsEz Easy Image Downloader allows remote attackers to read arbitrary files via a .. | 5.0 |
2009-02-06 | CVE-2008-6083 | Path Traversal vulnerability in Txtshop 1.0 Directory traversal vulnerability in header.php in TXTshop beta 1.0 allows remote attackers to include and execute arbitrary local files via a .. | 7.5 |
2009-02-06 | CVE-2008-6080 | Path Traversal vulnerability in Codecall COM Ionfiles 4.4.2 Directory traversal vulnerability in download.php in the ionFiles (com_ionfiles) 4.4.2 component for Joomla! allows remote attackers to read arbitrary files via a .. | 5.0 |
2009-02-06 | CVE-2008-6074 | Path Traversal vulnerability in PHPcrs Directory traversal vulnerability in frame.php in phpcrs 2.06 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. | 5.1 |
2009-02-05 | CVE-2009-0423 | Path Traversal vulnerability in Kevin Walker PHP Photo Album 0.8 Directory traversal vulnerability in index.php in Php Photo Album (PHPPA) 0.8 BETA allows remote attackers to include and execute arbitrary local files via a .. | 7.5 |