Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE CVE VULNERABILITY TITLE RISK
2009-02-10 CVE-2009-0457 Path Traversal vulnerability in Magtrb AJA Portal 1.2
Multiple directory traversal vulnerabilities in AJA Portal 1.2 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the currentlang parameter to admin/case.php in the (1) Contact_Plus and (2) Reviews modules, and (3) the module_name parameter to admin/includes/FANCYNLOptions.php in the Fancy_NewsLetter module.
network
low complexity
magtrb CWE-22
7.5
7.5
2009-02-10 CVE-2009-0448 Path Traversal vulnerability in Syntax Desktop Syntax Desktop 2.7
Directory traversal vulnerability in admin/modules/aa/preview.php in Syntax Desktop 2.7 allows remote attackers to include and execute arbitrary local files via a ..
network
low complexity
syntax-desktop CWE-22
7.5
7.5
2009-02-10 CVE-2009-0442 Path Traversal vulnerability in PHPbbbook 1.3/1.3H
Directory traversal vulnerability in bbcode.php in PHPbbBook 1.3 and 1.3h allows remote attackers to include and execute arbitrary local files via a ..
network
phpbbbook CWE-22
6.8
6.8
2009-02-10 CVE-2009-0497 Path Traversal vulnerability in Igniterealtime Openfire 3.6.2
Directory traversal vulnerability in log.jsp in Ignite Realtime Openfire 3.6.2 allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the log parameter.
network
low complexity
igniterealtime CWE-22
5.0
5.0
2009-02-06 CVE-2008-6090 Path Traversal vulnerability in Scriptsez Mini Hosting Panel
Directory traversal vulnerability in members.php in ScriptsEz Mini Hosting Panel allows remote attackers to read arbitrary local files via a ..
network
scriptsez CWE-22
4.3
4.3
2009-02-06 CVE-2008-6089 Path Traversal vulnerability in Scriptsez Easy Image Downloader
Directory traversal vulnerability in main.php in ScriptsEz Easy Image Downloader allows remote attackers to read arbitrary files via a ..
network
low complexity
scriptsez CWE-22
5.0
5.0
2009-02-06 CVE-2008-6083 Path Traversal vulnerability in Txtshop 1.0
Directory traversal vulnerability in header.php in TXTshop beta 1.0 allows remote attackers to include and execute arbitrary local files via a ..
network
low complexity
txtshop CWE-22
7.5
7.5
2009-02-06 CVE-2008-6080 Path Traversal vulnerability in Codecall COM Ionfiles 4.4.2
Directory traversal vulnerability in download.php in the ionFiles (com_ionfiles) 4.4.2 component for Joomla! allows remote attackers to read arbitrary files via a ..
network
low complexity
codecall joomla CWE-22
5.0
5.0
2009-02-06 CVE-2008-6074 Path Traversal vulnerability in PHPcrs
Directory traversal vulnerability in frame.php in phpcrs 2.06 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a ..
network
high complexity
phpcrs CWE-22
5.1
5.1
2009-02-05 CVE-2009-0423 Path Traversal vulnerability in Kevin Walker PHP Photo Album 0.8
Directory traversal vulnerability in index.php in Php Photo Album (PHPPA) 0.8 BETA allows remote attackers to include and execute arbitrary local files via a ..
network
low complexity
kevin-walker CWE-22
7.5
7.5