Lucene search
+L

194 matches found

Cvelist
Cvelist
added 2016/04/15 2:0 p.m.26 views

CVE-2016-0889

An HTTP servlet in vApp Manager in EMC Unisphere for VMAX Virtual Appliance before 8.2.0 allows remote attackers to write to arbitrary files via a crafted pathname...

9.3AI score0.03139EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2015/11/11 11:21 a.m.8 views

flash-plugin: multiple code execution issues fixed in APSB15-28

Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow remote attackers to bypass intended access restrictions and writ...

7.8CVSS5.9AI score0.03595EPSS
Exploits0References5
CNVD
CNVD
added 2015/07/02 12:0 a.m.4 views

Android Droidware UK Explorer+ File Manager Application Directory Traversal Vulnerability

Droidware UK Explorer+ File Manager application for Android is a file manager based on the Android platform. A directory traversal vulnerability exists in the Android Droidware UK Explorer+ File Manager application prior to version 2.3.3. A remote attacker can exploit this vulnerability to write...

6.4CVSS7.1AI score0.01703EPSS
Exploits0References1
CNVD
CNVD
added 2015/02/26 12:0 a.m.4 views

Lexmark Markvision Enterprise LibraryFileUploadServlet servlet directory traversal vulnerability

Lexmark Markvision Enterprise is the United States Lexmark Lexmark a set of Web-based network device management software. The software is mainly used to manage network devices such as printers, such as providing some printer drivers for Unix systems. A directory traversal vulnerability exists in...

9CVSS7.5AI score0.0319EPSS
Exploits0References1
NVD
NVD
added 2015/02/12 4:59 p.m.15 views

CVE-2014-9512

rsync 3.1.1 allows remote attackers to write to arbitrary files via a symlink attack on a file in the synchronization path...

6.4CVSS9.3AI score0.06499EPSS
Exploits1References15
OSV
OSV
added 2015/02/12 4:59 p.m.8 views

CVE-2014-9512

rsync 3.1.1 allows remote attackers to write to arbitrary files via a symlink attack on a file in the synchronization path...

6.4AI score
Exploits0References16
Debian CVE
Debian CVE
added 2015/02/12 4:0 p.m.32 views

CVE-2014-9512

rsync 3.1.1 allows remote attackers to write to arbitrary files via a symlink attack on a file in the synchronization path...

6.4CVSS8.4AI score0.06499EPSS
Exploits1
Cvelist
Cvelist
added 2015/02/12 4:0 p.m.23 views

CVE-2014-9512

rsync 3.1.1 allows remote attackers to write to arbitrary files via a symlink attack on a file in the synchronization path...

9AI score0.06499EPSS
Exploits1References15
OSV
OSV
added 2015/01/21 6:59 p.m.7 views

CVE-2015-1194

pax 1:20140703 allows remote attackers to write to arbitrary files via a symlink attack in an archive...

7AI score0.01695EPSS
Exploits1References2
OSV
OSV
added 2015/01/21 6:59 p.m.7 views

CVE-2015-1038

p7zip 9.20.1 allows remote attackers to write to arbitrary files via a symlink attack in an archive...

6.4AI score
Exploits0References12
UbuntuCve
UbuntuCve
added 2015/01/21 6:59 p.m.22 views

CVE-2015-1038

p7zip 9.20.1 allows remote attackers to write to arbitrary files via a symlink attack in an archive...

5.8CVSS7.3AI score0.03291EPSS
Exploits1References1
Cvelist
Cvelist
added 2015/01/21 6:0 p.m.17 views

CVE-2015-1191

Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote attackers to write to arbitrary files via a 1 full pathname or 2 .. dot dot in an archive...

6.7AI score0.03029EPSS
Exploits1References6
Cvelist
Cvelist
added 2015/01/02 8:0 p.m.37 views

CVE-2014-9447

Directory traversal vulnerability in the readlongnames function in libelf/elfbegin.c in elfutils 0.152 and 0.161 allows remote attackers to write to arbitrary files to the root directory via a / slash in a crafted archive, as demonstrated using the ar program...

6.4AI score0.05018EPSS
Exploits0References11
Cvelist
Cvelist
added 2015/01/01 11:0 a.m.23 views

CVE-2011-5294

The SaveMessage method in the LEADeMail.LEADSmtp.20 ActiveX control in LTCML14n.dll 14.0.0.34 in Kofax e-Transactions Sender Sendbox 2.5.0.933 allows remote attackers to write to arbitrary files via a pathname in the first argument...

6.8AI score0.01229EPSS
Exploits1References1
NVD
NVD
added 2015/01/01 2:59 a.m.12 views

CVE-2011-5291

The SaveData method in the Cygnicon.ViewControl.1 ActiveX control in CyViewer.ocx in Ashampoo 3D CAD Professional 3.x before 3.0.2 allows remote attackers to write to arbitrary files via a pathname in the first argument...

6.4CVSS6.8AI score0.01229EPSS
Exploits1References1
Cvelist
Cvelist
added 2015/01/01 2:0 a.m.20 views

CVE-2011-5291

The SaveData method in the Cygnicon.ViewControl.1 ActiveX control in CyViewer.ocx in Ashampoo 3D CAD Professional 3.x before 3.0.2 allows remote attackers to write to arbitrary files via a pathname in the first argument...

6.8AI score0.01229EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2014/12/25 12:0 a.m.7 views

PT-2014-4562 · Telerik · Telerik Ui For Asp.Net Ajax

Name of the Vulnerable Software and Affected Versions: Telerik UI for ASP.NET AJAX versions prior to Q3 2012 SP2 Description: The issue allows remote attackers to write to arbitrary files and consequently execute arbitrary code via a full pathname in the UploadID metadata value in the...

7.5CVSS9.5AI score0.0372EPSS
Exploits1References6
OSV
OSV
added 2014/09/25 12:0 a.m.5 views

UBUNTU-CVE-2014-7169

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the...

9.8CVSS7.5AI score0.9994EPSS
Exploits18References7
OSV
OSV
added 2014/04/28 12:0 a.m.10 views

UBUNTU-CVE-2014-0471

Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quoting."...

5CVSS5.9AI score0.02859EPSS
Exploits0References4
OSV
OSV
added 2013/11/18 2:55 a.m.5 views

DEBIAN-CVE-2013-4510

Directory traversal vulnerability in the client in Tryton 3.0.0, as distributed before 20131104 and earlier, allows remote servers to write arbitrary files via path separators in the extension of a report...

7.8CVSS7.1AI score0.02137EPSS
Exploits1References1
Rows per page
Query Builder