CVE-1999-0045

List of arbitrary files on Web host via nph-test-cgi script...

CVE-2024-45604

Contao is an Open Source CMS. In affected versions authenticated users in the back end can list files outside the document root in the file selector widget. Users are advised to update to Contao 4.13.49. There are no known workarounds for this vulnerability...

CVE-2018-19226

An issue was discovered in LAOBANCMS 2.0. It allows remote attackers to list .txt files via a direct request for the /data/0/admin.txt URI...

CVE-2024-7762 Simple Job Board < 2.12.6 - Unauthenticated Resumes Download

The Simple Job Board WordPress plugin before 2.12.6 does not prevent uploaded files from being listed, allowing unauthenticated users to access and download uploaded resumes...

CVE-2024-22889

Due to incorrect access control in Plone version v6.0.9, remote attackers can view and list all files hosted on the website via sending a crafted request...

PT-2021-8690 · Red Hat · Redhat-Certification

Name of the Vulnerable Software and Affected Versions: redhat-certification version 7 Description: The issue is related to improper configuration, which allows listing of all files and directories in the /var/www/rhcert/store/transfer directory through the "/rhcert-transfer" API endpoint. This...

WUZHI CMS 路径遍历漏洞

WUZHI CMS is a high-performance open source content management system , support for LNAMP architecture , suitable for portals , corporate website building , cell phone sites , microblogging promotion. WUZHI CMS 4.1.0 coreframe/app/template/admin/index.php directory traversal vulnerability exists...

GHSA-GPVJ-Q7FP-JCCH simplehttpserver allows directory traversal and file listing

Path traversal in simplehttpserver v0.2.1 allows listing any file on the server...

CVE-2000-0928

WQuinn QuotaAdvisor 4.1 allows users to list directories and files by running a report on the targeted shares...