6516 matches found
Directory traversal
Directory traversal vulnerability in SQLiteManager 1.2.0 allows remote attackers to read arbitrary files via a .. dot dot in a SQLiteManagercurrentTheme cookie...
CVE-2006-7001
CVE-2006-7001 describes a directory traversal in PhpMyChat Plus 1.9 and earlier. The vulnerable component is the avatar.php handler, where an attacker can supply a "L" parameter containing ".." to read arbitrary files on the server. This mirrors the established issue family in PhpMyChat Plus 1.9 ...
CVE-2007-0412
BEA WebLogic Server 6.1 through 6.1 SP7, 7.0 through 7.0 SP7, and 8.1 through 8.1 SP5 allows remote attackers to read arbitrary files inside the class-path property via .ear or exploded .ear files that use the manifest class-path property to point to utility jar files...
CVE-2007-0389
The CVE-2007-0389 issue affects ArsDigita Community System (ACS) 3.4.10 and earlier and ArsDigita Community Education Solution (ACES) 1.1. It is a directory traversal vulnerability that lets an attacker read arbitrary files by sending URIs containing double-encoded sequences like .%252e/. The pro...
CVE-2007-0055
CVE-2007-0055 describes a directory traversal vulnerability in Formbankserver 1.9, specifically in the formbankcgi.exe/AbfrageForm component. The underlying issue is that an attacker can cause the application to read arbitrary files by supplying directory traversal sequences in the Name parameter...
security flaw
Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server jbossas 3.2.4 through 4.0.5 allows remote authenticated users to read or modify arbitrary files, and possibly execute arbitrary code, via unspecified vectors related to the console manager...
Links ELinks SMBClient远程命令执行漏洞
Links ELinks是一款web浏览器。 Links ELinks存在一个缺陷,允许恶意web站点在目标机器上执行smbclient命令,此缺陷可能导致从目标系统上读取任意文件或者上传恶意文件到目标系统并执行。 具体问题代码如下: smbfunc in smb.c: ... 143 if share 144 if !dir || dirstrlendir - 1 == '/' || dirstrlendir - 1 == '\' 145 if dir 146 vn++ = "-D"; 147 vn++ = dir; 148 149 vn++ = "-c"; 150 vn++ =...
PT-2006-6729 · Abitwhizzy · Abitwhizzy
Name of the Vulnerable Software and Affected Versions: aBitWhizzy affected versions not specified Description: The issue allows remote attackers to read arbitrary files due to a directory traversal vulnerability in the abitwhizzy.php file. This is achieved by including a .. dot dot in the f...
CVE-2006-6033
CVE-2006-6033 affects Simple PHP Blog (SPHPBlog), likely version 0.4.8. It enables directory traversal via a .. sequence in the blog_theme parameter in multiple PHP scripts (index.php, add_cgi.php, add_link.php, login.php, template.php, contact.php), allowing remote attackers to read arbitrary fi...
PT-2006-6675 · Dosepa · Dosepa
Name of the Vulnerable Software and Affected Versions: DoSePa version 1.0.4 Description: A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by using a .. dot dot sequence or absolute file path in the file parameter. Recommendations: For version...
PT-2006-6156 · Phpadsnew · Phpadsnew
Name of the Vulnerable Software and Affected Versions: phpAdsNew version 2.0.8 Description: A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by using a .. dot dot in the phpAds configlanguage parameter in the "upgrade.php" file...
DEBIAN-CVE-2006-5031
Directory traversal vulnerability in app/webroot/js/vendors.php in Cake Software Foundation CakePHP before 1.1.8.3544 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter, followed by a filename ending with "%00" and a .js filename...
CVE-2006-4294
The CVE-2006-4294 issue affects TWiki’s viewfile in TWiki versions 4.0.0 through 4.0.4, where a directory traversal via a .. sequence in the filename parameter allows remote attackers to read arbitrary files on the server subject to the web server user’s privileges. The available connected docume...
security flaw
Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote attackers to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control...
CVE-2006-2758
CVE-2006-2758 is a directory traversal vulnerability in Jetty 6.0.x (jetty6) beta16. A remote attacker can read arbitrary files by using an encoded path like %2e%2e%5c (../) in the URL, potentially impacting confidentiality. The issue is noted to possibly be the same as CVE-2005-3747. The connect...
CYBSEC-SAPBC2.txt
The following advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSECSecurityAdvisoryArbitraryFileReadorDeleteinSAPBC.pdf CYBSEC S.A. www.cybsec.com Advisory Name: Arbitrary File Read/Delete in SAP BC Business Connector Vulnerability Class: Improper Input...
CYBSEC - Security Advisory: Arbitrary File Read/Delete in SAP BC (Business Connector)
The following advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSECSecurityAdvisoryArbitraryFileReadorDeleteinSAPBC.pdf CYBSEC S.A. www.cybsec.com Advisory Name: Arbitrary File Read/Delete in SAP BC Business Connector Vulnerability Class: Improper Input...
CVE-2006-2105
CVE-2006-2105 affects Jupiter CMS versions 1.1.4 and 1.1.5. A directory traversal flaw in index.php allows remote attackers to read arbitrary files by supplying ".." sequences terminated by a null byte (%00) in the n parameter. The issue is a path traversal in user input handling that can access ...
Path Disclosure and Arbitrary File Read Vulnerability in SLAB5000
Description SLAB500 is a complete, dynamic, modular web-system designed to your specifications, allowing you to quickly and conveniently update all your content, add new pages, upload images, sounds and video from any browser, via our front-end interface from any location that you have web access...
CYBSEC - Security Pre-Advisory: Arbitrary File Read/Delete in SAP BC
The following advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSECSecurityPre-AdvisoryArbitraryFileReadorDeleteinSAPBC.pdf CYBSEC S.A. www.cybsec.com Pre-Advisory Name: Arbitrary File Read/Delete in SAP BC Business Connector Vulnerability Class: Improper Inp...