6481 matches found
Sun Microsystems Solaris SRSEXEC 3.2.x - Arbitrary File Read Local Information Disclosure
source: https://www.securityfocus.com/bid/23915/info Sun Microsystems Solaris is prone to a local information-disclosure vulnerability due to a design error. A local attacker may exploit this issue to access sensitive information, including superuser password information, that may lead to further...
CVE-2007-2507
Directory traversal vulnerability in includes/download.php in Treble Designs 1024 CMS 0.7 allows remote attackers to read arbitrary files via a .. dot dot in the item parameter...
CVE-2007-2486
The CVE-2007-2486 entry describes a directory traversal vulnerability in Motobit (aka PStruh-CZ) using the file parameter of download.asp. Affected versions are Motobit 1.3 and 1.5 . The root cause is improper handling of the File parameter, enabling an attacker to read arbitrary files via a “..”...
CVE-2007-2368
WebSPELL 4.01.02 (and earlier) is affected in picture.php where the file parameter can be abused to read arbitrary files. Root cause: improper handling of the file parameter allows remote attackers to access files, with no authentication and network-based access. The issue has a NVD CVSS v2 base ...
CVE-2007-1478
CVE-2007-1478 affects McGallery 0.5b where download.php can be abused to read arbitrary files and reveal script source code via the filename parameter. This is a remote-access risk (attack surface via web requests) that enables partial confidentiality loss. The available documents describe the vu...
Directory traversal
Directory traversal vulnerability in SQLiteManager 1.2.0 allows remote attackers to read arbitrary files via a .. dot dot in a SQLiteManagercurrentTheme cookie...
CVE-2006-7001
CVE-2006-7001 describes a directory traversal in PhpMyChat Plus 1.9 and earlier. The vulnerable component is the avatar.php handler, where an attacker can supply a "L" parameter containing ".." to read arbitrary files on the server. This mirrors the established issue family in PhpMyChat Plus 1.9 ...
CVE-2007-0412
BEA WebLogic Server 6.1 through 6.1 SP7, 7.0 through 7.0 SP7, and 8.1 through 8.1 SP5 allows remote attackers to read arbitrary files inside the class-path property via .ear or exploded .ear files that use the manifest class-path property to point to utility jar files...
CVE-2007-0389
The CVE-2007-0389 issue affects ArsDigita Community System (ACS) 3.4.10 and earlier and ArsDigita Community Education Solution (ACES) 1.1. It is a directory traversal vulnerability that lets an attacker read arbitrary files by sending URIs containing double-encoded sequences like .%252e/. The pro...
CVE-2007-0055
CVE-2007-0055 describes a directory traversal vulnerability in Formbankserver 1.9, specifically in the formbankcgi.exe/AbfrageForm component. The underlying issue is that an attacker can cause the application to read arbitrary files by supplying directory traversal sequences in the Name parameter...
security flaw
Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server jbossas 3.2.4 through 4.0.5 allows remote authenticated users to read or modify arbitrary files, and possibly execute arbitrary code, via unspecified vectors related to the console manager...
Links ELinks SMBClient远程命令执行漏洞
Links ELinks是一款web浏览器。 Links ELinks存在一个缺陷,允许恶意web站点在目标机器上执行smbclient命令,此缺陷可能导致从目标系统上读取任意文件或者上传恶意文件到目标系统并执行。 具体问题代码如下: smbfunc in smb.c: ... 143 if share 144 if !dir || dirstrlendir - 1 == '/' || dirstrlendir - 1 == '\' 145 if dir 146 vn++ = "-D"; 147 vn++ = dir; 148 149 vn++ = "-c"; 150 vn++ =...
PT-2006-6729 · Abitwhizzy · Abitwhizzy
Name of the Vulnerable Software and Affected Versions: aBitWhizzy affected versions not specified Description: The issue allows remote attackers to read arbitrary files due to a directory traversal vulnerability in the abitwhizzy.php file. This is achieved by including a .. dot dot in the f...
CVE-2006-6033
CVE-2006-6033 affects Simple PHP Blog (SPHPBlog), likely version 0.4.8. It enables directory traversal via a .. sequence in the blog_theme parameter in multiple PHP scripts (index.php, add_cgi.php, add_link.php, login.php, template.php, contact.php), allowing remote attackers to read arbitrary fi...
PT-2006-6675 · Dosepa · Dosepa
Name of the Vulnerable Software and Affected Versions: DoSePa version 1.0.4 Description: A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by using a .. dot dot sequence or absolute file path in the file parameter. Recommendations: For version...
PT-2006-6156 · Phpadsnew · Phpadsnew
Name of the Vulnerable Software and Affected Versions: phpAdsNew version 2.0.8 Description: A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by using a .. dot dot in the phpAds configlanguage parameter in the "upgrade.php" file...
DEBIAN-CVE-2006-5031
Directory traversal vulnerability in app/webroot/js/vendors.php in Cake Software Foundation CakePHP before 1.1.8.3544 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter, followed by a filename ending with "%00" and a .js filename...
CVE-2006-4294
The CVE-2006-4294 issue affects TWiki’s viewfile in TWiki versions 4.0.0 through 4.0.4, where a directory traversal via a .. sequence in the filename parameter allows remote attackers to read arbitrary files on the server subject to the web server user’s privileges. The available connected docume...
security flaw
Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote attackers to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control...
CVE-2006-2758
CVE-2006-2758 is a directory traversal vulnerability in Jetty 6.0.x (jetty6) beta16. A remote attacker can read arbitrary files by using an encoded path like %2e%2e%5c (../) in the URL, potentially impacting confidentiality. The issue is noted to possibly be the same as CVE-2005-3747. The connect...