PT-2026-43218

PCViewer vt1000 contains a directory traversal vulnerability that allows unauthenticated attackers to read arbitrary files by submitting relative path sequences in GET requests. Attackers can use path traversal sequences ../../../../../../../../../../../../etc/passwd to access sensitive system...

PT-2026-5393

Improper handling of filenames in certain HIKSEMI NAS products may lead to the exposure of sensitive system files...

EUVD-2022-41554

Malicious code in bioql PyPI...

EUVD-2022-49122

Malicious code in bioql PyPI...

LlamaIndex vulnerable to Path Traversal attack through its encode_image function

A path traversal vulnerability exists in run-llama/llamaindex versions 0.11.23 through 0.12.40, specifically within the encodeimage function in genericutils.py. This vulnerability allows an attacker to manipulate the imagepath input to read arbitrary files on the server, including sensitive syste...

PT-2025-21550

Name of the Vulnerable Software and Affected Versions: EKC Tournament Manager versions prior to 2.2.2 Description: The issue allows a logged-in admin to download system files outside of the WordPress directory. This is a significant concern as it could potentially expose sensitive system...

UFIDA Network Technology Corporation YonBIP Arbitrary File Read Vulnerability

YonBIP is a new generation of products developed by UFIDA, as the world's leading enterprise digital intelligence platform and application software. An arbitrary file read vulnerability exists in YonBIP, which can be exploited by an attacker to read the contents of system files...

CVE-2022-33739

CA Clarity 15.8 and below and 15.9.0 contain an insecure XML parsing vulnerability that could allow a remote attacker to potentially view the contents of any file on the system...

Facil-CMS 0.1RC - Multiple Local File Inclusions

======================================================= Facil-CMS 0.1RC Local File Inclusion Vulnerabilities ======================================================= ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

StrongHold < 3.0 build 3015 System File Disclosure

Binary data 1473.prm...

PHPNuke viewpage.php allows Remote File retrieving

viewpage.php is a part of PHPNuke. The Script allows an attacker to view all files on the System. Example: http://server.com/viewpage.php?file=/etc/passwd Zero X member of www.Lobnan.de...

altavista.txt

hola, more bugs in the AV-Search thing .. using uri-encoded strings it is possible to view "any" file on the system .. examples: unixxxsss ... http://server:port/cgi-bin/query?mss=%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f/etc/passwd or on an micro$oft IIS...

icq99.web.server.txt

Date: Mon, 5 Apr 1999 23:50:56 +0200 From: Jan Vogelgesang To: [email protected] Subject: security hole in ICQ-Webserver Hi, Some days ago i've read a message here in Bugtraq from Ronald A. Jarell about a vulnerability in the ICQ-Webserver . I tried to reproduce this vulnerability with my...