1092 matches found
CVE-2023-4914
Relative Path Traversal in GitHub repository cecilapp/cecil prior to 7.47.1...
CVE-2021-41026
A relative path traversal in FortiWeb versions 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may allow an authenticated attacker to retrieve arbitrary files from the underlying filesystem via specially crafted web requests...
CVE-2025-23084
A vulnerability has been identified in Node.js, specifically affecting the handling of drive names in the Windows environment. Certain Node.js functions do not treat drive names as special on Windows. As a result, although Node.js assumes a relative path, it actually refers to the root directory...
CVE-2023-4897
Relative Path Traversal in GitHub repository mintplex-labs/anything-llm prior to 0.0.1...
tar: Tar path traversal
A relative path traversal flaw was found in the gnu tar utility. When archives with relative paths are extracted without the ‘--keep-old-files’ ‘-k’, the extraction process may overwrite existing files that the current user has access to. The server may be impacted if these files are critical to...
CVE-2025-15225
WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to read arbitrary system files...
CVE-2025-15225
WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to read arbitrary system files...
CVE-2025-15225
WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to read arbitrary system files...
CVE-2025-15225 Sunnet|WMPro - Arbitrary File Read
WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to read arbitrary system files...
CVE-2025-15225 Sunnet|WMPro - Arbitrary File Read
WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to read arbitrary system files...
EUVD-2025-205560
WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to read arbitrary system files...
CVE-2025-15225
WMPro by Sunnet is affected by an Arbitrary File Read vulnerability exploitable via Relative Path Traversal. The issue allows unauthenticated remote attackers to read arbitrary system files. Available documents consistently describe the vulnerability class and impact but do not specify affected v...
PT-2025-53700
Name of the Vulnerable Software and Affected Versions WMPro affected versions not specified Description WMPro developed by Sunnet has an Arbitrary File Read issue. Unauthenticated remote attackers can exploit Relative Path Traversal to read arbitrary system files. Recommendations At the moment,...
PT-2025-53683
I was credited for discovering and responsibly disclosing CVE-2025-67797 TC-2025-01 affecting Thinkst Canary. The issue is a relative path traversal vulnerability in the Canary HTTP Web Server specific webskins only https://t.co/Q7p1Er1eJI @thinkst CVE CyberSecurity 🇹🇿 https://t.co/TXxlliE7A2...
CVE-2025-15015
Enterprise Cloud Database developed by Ragic has a Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...
CVE-2025-15015
Enterprise Cloud Database developed by Ragic has a Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...
EUVD-2025-204689
Enterprise Cloud Database developed by Ragic has a Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...
CVE-2025-15015
The CVE-2025-15015 entry concerns Ragic’s Enterprise Cloud Database with an Arbitrary File Read via Relative Path Traversal. The vulnerability is exploitable by unauthenticated remote attackers and could allow downloading arbitrary system files. Multiple connected sources confirm the issue but do...
PT-2025-52625
Name of the Vulnerable Software and Affected Versions Ragic Enterprise Cloud Database affected versions not specified Description An unauthenticated remote attacker can exploit a Relative Path Traversal issue to download arbitrary system files. The issue is an Arbitrary File Read impacting the...
CVE-2025-62552
Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally...