50 matches found
CVE-1999-0296
Solaris volrmmount program allows attackers to read any file...
EUVD-2020-25191
Malware in sbrugna...
EUVD-2000-0900
Malware in sbrugna...
EUVD-2005-4197
Malware in sbrugna...
EUVD-2017-15690
Malware in sbrugna...
EUVD-2025-12226
Malicious code in bioql PyPI...
EUVD-2022-2330
Malicious code in bioql PyPI...
CVE-2025-53964
GoldenDict 1.5.0 and 1.5.1 has an exposed dangerous method that allows reading and modifying files when a user adds a crafted dictionary and then searches for any term included in that dictionary...
Nazgul Nostromo nhttpd < 2.1 Path Traversal Vulnerability
Nazgul Nostromo nhttpd is prone to a path traversal vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2024-46664
A relative path traversal in Fortinet FortiRecorder CWE-23 version 7.2.0 through 7.2.1 and before 7.0.4 allows a privileged attacker to read files from the underlying filesystem via crafted HTTP or HTTPs requests...
CVE-2020-8803
SuiteCRM through 7.11.11 allows Directory Traversal to include arbitrary .php files within the webroot via addtoprospectlist...
CVE-2005-4622
Directory traversal vulnerability in eFileGo 3.01 allows remote attackers to execute arbitrary code, read arbitrary files, and upload arbitrary files via a ... triple dot in 1 the URL on port 608 and 2 the argument to upload.exe...
CVE-2025-27716
Improper limitation of a pathname to a restricted directory 'Path Traversal' issue exists in the file/folder listing process of the USB storage file-sharing function of HGW-BL1500HM Ver 002.002.003 and earlier. If this vulnerability is exploited, the product's files may be obtained and/or altered...
AgentScope Path Traversal in /api/file
A path traversal vulnerability exists in modelscope/agentscope version v.0.0.4. The API endpoint /api/file does not properly sanitize the path parameter, allowing an attacker to read arbitrary files on the server...
Local File Inclusion in Rack::Static
Summary Rack::Static can serve files under the specified root: even if urls: are provided, which may expose other files under the specified root: unexpectedly. Details The vulnerability occurs because Rack::Static does not properly sanitize user-supplied paths before serving files. Specifically,...
Esri ArcGIS Server Path Traversal Vulnerability
Esri ArcGIS Server is Esri's Web-oriented enterprise software platform for providing geolocation services. A path traversal vulnerability exists in Esri ArcGIS Server versions 10.9.1 through 11.3, which stems from the program failing to properly filter for special elements in the path of a resour...
Linux Distros Unpatched Vulnerability : CVE-2016-9379
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The pygrub boot loader emulator in Xen, when S-expression output format is requested, allows local pygrub- using guest OS administrators to read or delete...
CVE-2023-5390
An attacker could potentially exploit this vulnerability, leading to files being read from the Honeywell Experion ControlEdge VirtualUOC and ControlEdge UOC. This exploit could be used to read files from the controller that may expose limited information from the device. Honeywell recommends...
CVE-2022-23167
CVE-2022-23167 affects Amodat Mobile Application Gateway. The issue is a Local File Inclusion (LFI) in the web endpoint implemented as /mobile/downloadfile.aspx?Filename=../.. /windows/boot.ini, reachable unauthenticated. This allows an attacker to read sensitive files on the host. Public materia...
QSAN Storage Manager Path Traversal Vulnerability (CNVD-2021-48976)
QSAN Storage Manager is a NAS operating system from Quantium Technologies Incorporated QSAN. A path traversal vulnerability exists in FileStreaming in QSAN Storage Manager 3.3.1 and earlier versions. An attacker can exploit this vulnerability by injecting symbolic links to access arbitrary files...