Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-02-05 | CVE-2008-4419 | Path Traversal vulnerability in HP products Directory traversal vulnerability in the HP JetDirect web administration interface in the HP-ChaiSOE 1.0 embedded web server on the LaserJet 9040mfp, LaserJet 9050mfp, and Color LaserJet 9500mfp before firmware 08.110.9; LaserJet 4345mfp and 9200C Digital Sender before firmware 09.120.9; Color LaserJet 4730mfp before firmware 46.200.9; LaserJet 2410, LaserJet 2420, and LaserJet 2430 before firmware 20080819 SPCL112A; LaserJet 4250 and LaserJet 4350 before firmware 20080819 SPCL015A; and LaserJet 9040 and LaserJet 9050 before firmware 20080819 SPCL110A allows remote attackers to read arbitrary files via directory traversal sequences in the URI. | 7.8 |
| 2009-02-03 | CVE-2008-6025 | Path Traversal vulnerability in Openelec 2.02/3.00 Directory traversal vulnerability in scr/form.php in openElec 3.01 and earlier allows remote attackers to include and execute arbitrary local files via a .. | 6.8 |
| 2009-02-03 | CVE-2009-0392 | Path Traversal vulnerability in Motorola Cpei300 Directory traversal vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to read arbitrary files via a .. | 6.8 |
| 2009-02-02 | CVE-2008-6018 | Path Traversal vulnerability in Myphpsite NIL Directory traversal vulnerability in index.php in MyPHPSite, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. | 6.8 |
| 2009-01-30 | CVE-2009-0371 | Path Traversal vulnerability in Sitexs CMS Sitexs CMS 0.1 Directory traversal vulnerability in post.php in SiteXS CMS 0.1.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. | 6.8 |
| 2009-01-30 | CVE-2008-6012 | Path Traversal vulnerability in Hardkap Pritlog 0.2/0.3 Directory traversal vulnerability in index.php in Pritlog 0.4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. | 4.3 |
| 2009-01-30 | CVE-2008-6010 | Path Traversal vulnerability in SG Real Estate Portal SG Real Estate Portal 2.0 Multiple directory traversal vulnerabilities in SG Real Estate Portal 2.0 allow remote attackers to read arbitrary files via a .. | 5.0 |
| 2009-01-29 | CVE-2009-0340 | Path Traversal vulnerability in Quirm Simple PHP Newsletter 1.5 Multiple directory traversal vulnerabilities in Simple PHP Newsletter 1.5 allow remote attackers to read arbitrary files via a .. | 6.8 |
| 2009-01-29 | CVE-2009-0331 | Path Traversal vulnerability in Quirm Espg 1.72 Directory traversal vulnerability in gallery/comment.php in Enhanced Simple PHP Gallery (ESPG) 1.72 allows remote attackers to read arbitrary files via a .. | 7.8 |
| 2009-01-29 | CVE-2009-0330 | Path Traversal vulnerability in Wss-Pro Scms 1 Directory traversal vulnerability in index.php in Simple Content Management System (SCMS) 1 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the p parameter. | 6.8 |