Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the uploadedFileSaveIn function, which uses filepath.Join with user-supplied directory input but does not validate the resulting path boundaries. An attacker can write files outside the intended web root by...

CVE-2026-43982

Algernon (a small Go web server) has a path-traversal risk in lua/upload/upload.go: uploadedFileSaveIn() joins a caller-supplied directory with filepath.Join() and performs no boundary check after joining. A path like ../../../tmp can resolve to /tmp, bypassing web-root constraints. The issue aff...

CVE-2026-33238

WWBN AVideo is an open source video platform. Prior to version 26.0, the listFiles.json.php endpoint accepts a path POST parameter and passes it directly to glob without restricting the path to an allowed base directory. An authenticated uploader can traverse the entire server filesystem by...

CVE-2026-33238

WWBN AVideo is an open source video platform. Prior to version 26.0, the listFiles.json.php endpoint accepts a path POST parameter and passes it directly to glob without restricting the path to an allowed base directory. An authenticated uploader can traverse the entire server filesystem by...

CVE-2019-25333

CVE-2019-25333 affects Bullwark Momentum Series JAWS 1.0. The issue is a directory traversal vulnerability where unauthenticated attackers can read sensitive files by manipulating HTTP request paths with multiple “../” sequences, potentially reading files such as “/etc/passwd” outside the web roo...

CVE-2025-67487

Static Web Server SWS is a production-ready web server suitable for static web files or assets. Versions 2.40.0 and below contain symbolic links symlinks which can be used to access files or directories outside the intended web root folder. SWS generally does not prevent symlinks from escaping th...

EUVD-2011-5242

Malware in sbrugna...

CVE-2021-4459

An authorized remote attacker can access files and directories outside the intended web root, potentially exposing sensitive system information of the affected Sunny Boy devices...

PT-2025-34841 · Sma Solar Technology · Sunny Boy

Name of the Vulnerable Software and Affected Versions: Sunny Boy affected versions not specified Description: An authorized remote attacker can access files and directories outside the intended web root, potentially exposing sensitive system information of the affected devices. Recommendations: A...

CVE-2011-10009

S40 CMS v0.4.2 contains a path traversal vulnerability in its index.php page handler. The p parameter is not properly sanitized, allowing attackers to traverse the file system and access arbitrary files outside the web root. This can be exploited remotely without authentication by appending...

CVE-2011-10009 S40 CMS 0.4.2 Path Traversal

S40 CMS v0.4.2 contains a path traversal vulnerability in its index.php page handler. The p parameter is not properly sanitized, allowing attackers to traverse the file system and access arbitrary files outside the web root. This can be exploited remotely without authentication by appending...

CVE-2011-10009 S40 CMS 0.4.2 Path Traversal

S40 CMS v0.4.2 contains a path traversal vulnerability in its index.php page handler. The p parameter is not properly sanitized, allowing attackers to traverse the file system and access arbitrary files outside the web root. This can be exploited remotely without authentication by appending...

Apache OFBiz Code Issue Vulnerability

Apache OFBiz is the United States Apache Apache Foundation of a set of enterprise resource planning ERP system. The system provides a suite of Java-based web application components and tools. A code issue vulnerability exists in Apache OFBiz versions prior to 18.12.12. An attacker could exploit...

Apache OFBiz Security Vulnerability

Apache OFBiz is the United States Apache Apache Foundation of a set of enterprise resource planning ERP system. The system provides a complete set of Java-based web application components and tools. A security vulnerability exists in Apache OFBiz versions prior to 18.12.12. An attacker could...

Qlik Sense 输入验证错误漏洞

Qlik Sense is an application from Qlik USA. Allows users to create visualizations, charts, interactive dashboards and analytical applications for local and offline use. A security vulnerability exists in Qlik Sense Enterprise for Windows. An attacker could exploit the vulnerability to access file...

CVE-2023-2688

The WordPress File Upload and WordPress File Upload Pro plugins for WordPress are vulnerable to Path Traversal in versions up to, and including, 4.19.1 via the vulnerable parameter wfunewpath. This allows administrator-level attackers to move files uploaded with the plugin located in...

KylinSoft youker-assistant 路径遍历漏洞

KylinSoft youker-assistant is a system management and configuration tool from KylinSoft China. A security vulnerability exists in KylinSoft youker-assistant versions prior to 3.0.2-0kylin6k70-23. An attacker could exploit the vulnerability to access files and directories stored outside of the web...

Flarum 路径遍历漏洞

Flarum is an open source forum system for the Flarum community. A path traversal vulnerability exists in Flarum versions prior to 1.7.0. An attacker can exploit this vulnerability to access files and directories stored outside the web root folder...

PT-2023-5520 · Sonicwall · Sonicwall Sma1000

Name of the Vulnerable Software and Affected Versions: SonicWall SMA1000 version 12.4.2 Description: The issue is a pre-authentication path traversal vulnerability that allows an unauthenticated attacker to access arbitrary files and directories stored outside the web root directory. This can be...

larasync 路径遍历漏洞

larasync is an end-to-end encrypted, simple and fast self-hosted file synchronization solution by Christian Hoffmann Personal Developer. A path traversal vulnerability exists in larasync. An attacker could use this vulnerability to access files and directories stored outside of the web root folde...