WordPress plugin Ultimate Bootstrap Elements for Elementor Path Traversal Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

The vulnerability of the Splunk Web platform for operational analysis in Splunk Enterprise allows a hacker to read arbitrary files.

The vulnerability of the Splunk Web platform for operational analysis in Splunk Enterprise relates to an incorrect restriction on the path to the restricted-access directory. Exploiting this vulnerability could allow a malicious actor to read arbitrary files remotely...

The vulnerability of Sonatype Nexus Repository Manager lies in the improper restriction of the path name to the restricted directory. This allows attackers to disclose protected information.

The vulnerability of Sonatype Nexus Repository Manager is related to incorrect restrictions on the path to the restricted-access catalog. Exploiting this vulnerability could allow a malicious actor to disclose protected information...

The vulnerability of the package manager for Kubernetes Helm, related to incorrect path name restrictions for restricted access directories, allows a malicious actor to save Helm Charts outside of the expected directory.

The vulnerability of the package manager for Kubernetes Helm is related to an incorrect restriction on the path name to the restricted-access directory. Exploiting this vulnerability could allow a malicious actor to store a Helm Chart outside of the expected directory...

ROS-20240614-01

Vulnerability of UnRAR file unzipping tool is related to incorrect restriction of the path name to the directory with restricted access. Exploitation of the vulnerability could allow a remote attacker, Overwrite arbitrary files using a specially crafted archive...

The vulnerability of the UpLoadServlet component in the Netgear ProSafe NMS300 network device allows a hacker to increase their privileges.

The vulnerability of the UpLoadServlet component in the Netgear ProSafe NMS300 network device management software is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...

The vulnerability of the getAllFolderContents() function in the web application of the Common Service Desktop of the ultrasonic diagnostic system GE HealthCare allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the getAllFolderContents function in the GE HealthCare ultrasonic diagnostic system’s web application is related to an incorrect restriction on the path to the restricted-access directory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to...

The vulnerability of the distributed Git version control system arises from an incorrect limitation on the path name for the restricted access directory. This allows a violator to circumvent protection during the cloning of unreliable repositories.

The vulnerability of the distributed Git version control system is related to an incorrect limitation on the path name for the restricted access directory. Exploiting this vulnerability could allow a perpetrator to bypass protections during the cloning of unreliable repositories...

The vulnerability of the FortiSandbox threat detection and mitigation system arises from an improper restriction on the path name to the restricted access catalog, allowing a perpetrator to execute arbitrary code.

The vulnerability of the FortiSandbox threat detection and mitigation system is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code...

PT-2024-5048 · Unknown · Deepjavalibrary

Name of the Vulnerable Software and Affected Versions: DeepJavaLibraryDJL versions 0.1.0 through 0.27.0 Description: The issue is related to the incorrect restriction of the directory path name with limited access. This can allow a remote attacker to overwrite system files. The estimated number o...

PT-2024-4728 · Ооо 'Кейсистемс' · Сервис Оправдательных Документов

Name of the Vulnerable Software and Affected Versions: Сервис оправдательных документов affected versions not specified Description: The issue is related to incorrect restriction of directory path names. It may allow a remote attacker to gain read and write access to local files. Recommendations:...

PT-2024-4720 · Microsoft · Net Core

Name of the Vulnerable Software and Affected Versions: .NET Core versions affected versions not specified Description: The issue is related to an incorrect restriction of directory path names in the .NET Core software component "Сервис обновлений". This could allow a remote attacker to gain read...

PT-2024-4722 · Unknown · Сервис Обновлений

Name of the Vulnerable Software and Affected Versions: Сервис обновлений affected versions not specified Description: The issue is related to the WSDL request handler in the "Сервис обновлений" software, which is associated with incorrect restriction of the directory path name. This could allow a...

PT-2024-41139 · Apache · Apache Pinot

Уязвимость OLAP-хранилища данных Apache Pinot связана с неверным ограничением имени пути к каталогу с ограниченным доступом. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, раскрыть защищаемую информацию путем отправки специально сформированного GET-запроса...

The vulnerability of the microprogramming software for Mitel series 6800, 6900, 6900w, and 6970 lies in the improper limitation of the path name to the restricted access catalog, allowing unauthorized access to protected information.

The vulnerability of the microprogramming software for Mitel series 6800, 6900, 6900w, and 6970 is related to incorrect restrictions on the path to the restricted catalog. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information by sending a special...

The vulnerability of the threat detection mechanism for Microsoft Defender for IoT involves an incorrect restriction on the path name to the restricted catalog, allowing attackers to execute arbitrary code.

The vulnerability of the Microsoft Defender for IoT threat detection mechanism is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the Git-based software platform for collaborative code development on GitLab arises from incorrect restrictions on the path name of the restricted directory. This allows attackers to expose protected information or cause service failures.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to an incorrect limitation on the path name for the restricted access directory. Exploiting this vulnerability could allow a malicious actor to disclose protected information or cause...

The vulnerability in the iTop web tool for managing IT services arises from an incorrect limitation on the path to the restricted access catalog, allowing a perpetrator to disclose protected information.

The vulnerability of the iTop IT service management web tool is related to an incorrect limitation on the path name to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to disclose protected information...

The vulnerability of SAP Asset Accounting software for asset management and accounting involves incorrect restrictions on path names in the catalog, allowing attackers to manipulate the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the SAP Asset Accounting software for asset management and accounting is related to incorrect restrictions on the path to the catalog. Exploitation of this vulnerability can allow a malicious actor to influence the confidentiality, integrity, and accessibility of protected...

The vulnerability of the Pandora FMS system for monitoring and managing IT environments lies in the improper restriction on the path name to the restricted access catalog. This allows attackers to write arbitrary files into the system and execute arbitrary code.

The vulnerability of the Pandora FMS system for monitoring and managing IT environments stems from incorrect restrictions on the path name used to access the restricted catalog. Exploiting this vulnerability allows a malicious actor to write arbitrary files into the system and execute arbitrary...