Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-01-02 | CVE-2008-5819 | Path Traversal vulnerability in Edreamers Ednews 2.0 Directory traversal vulnerability in eDNews_archive.php in eDreamers eDNews 2, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. | 6.8 |
| 2009-01-02 | CVE-2008-5818 | Path Traversal vulnerability in Edreamers Edcontainer 2.22 Directory traversal vulnerability in index.php in eDreamers eDContainer 2.22, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. | 6.8 |
| 2008-12-31 | CVE-2008-5794 | Path Traversal vulnerability in Lovecms 1.6.2 Directory traversal vulnerability in system/admin/images.php in LoveCMS 1.6.2 Final allows remote attackers to delete arbitrary files via a .. | 5.0 |
| 2008-12-31 | CVE-2008-5787 | Path Traversal vulnerability in Arabportal Arab Portal 2.1 Directory traversal vulnerability in mod.php in Arab Portal 2.1 on Windows allows remote attackers to read arbitrary files via a .. | 5.4 |
| 2008-12-30 | CVE-2008-5776 | Path Traversal vulnerability in Apertoblog 0.1.1 Multiple directory traversal vulnerabilities in Aperto Blog 0.1.1 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) action parameter to admin.php and the (2) get parameter to index.php. | 7.5 |
| 2008-12-30 | CVE-2008-5771 | Path Traversal vulnerability in PHPweather 2.2.2 Directory traversal vulnerability in test.php in PHP Weather 2.2.2 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter. | 7.5 |
| 2008-12-30 | CVE-2008-5752 | Path Traversal vulnerability in Wordpress Page Flip Image Gallery Plugin Directory traversal vulnerability in getConfig.php in the Page Flip Image Gallery plugin 0.2.2 and earlier for WordPress, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. | 4.3 |
| 2008-12-29 | CVE-2008-5748 | Path Traversal vulnerability in Bloofox Bloofoxcms 0.3.4 Directory traversal vulnerability in plugins/spaw2/dialogs/dialog.php in BloofoxCMS 0.3.4 allows remote attackers to read arbitrary files via the (1) lang, (2) theme, and (3) module parameters. | 8.1 |
| 2008-12-26 | CVE-2008-5728 | Path Traversal vulnerability in Netcat Multiple directory traversal vulnerabilities in AIST NetCat 3.12 and earlier, when magic_quotes_gpc is disabled and register_globals is enabled, allow remote attackers to include and execute arbitrary local files via a .. | 5.1 |
| 2008-12-26 | CVE-2008-5723 | Path Traversal vulnerability in Cgi-Rescue Kannibbs2000 and Kannibbs2000I Directory traversal vulnerability in CGI RESCUE KanniBBS2000 (aka KanniBBS2000i, MiniBBS2000, and MiniBBS2000i) before 1.03 allows remote attackers to read arbitrary files via unspecified vectors. | 5.0 |