Lucene search
+L

9 matches found

NVD
NVD
added 2026/06/12 10:16 a.m.15 views

CVE-2026-11844

The iVEC-IEI Virtualization Edge Computer developed by IEI Integration Corp has a Arbitrary File Read vulnerability, allowing privileged remote attackers to access files outside the intended directory scope...

6.9CVSS0.00407EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/02 12:0 a.m.8 views

ABC PRO EAP Legislator 路径遍历漏洞

ABC PRO EAP Legislator is a software developed by the Polish company ABC PRO, used for managing legislative processes and editing legal documents. ABC PRO EAP Legislator has a path traversal vulnerability; this vulnerability arises from the file extraction function’s ability to traverse paths,...

8.6CVSS5.8AI score0.00344EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/25 7:30 a.m.16 views

CVE-2025-59372

A path traversal vulnerability has been identified in certain router models. A remote, authenticated attacker could exploit this vulnerability to write files outside the intended directory, potentially affecting device integrity. Refer to the 'Security Update for ASUS Router Firmware' section on...

6.9CVSS0.00567EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/12/27 9:13 p.m.30 views

CVE-2019-25073 Path traversal in github.com/goadesign/goa

Improper path sanitization in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory...

7.4AI score0.0141EPSS
Exploits1References3
Veracode
Veracode
added 2022/05/26 10:5 a.m.24 views

Directory Traversal

github.com/gphper/ginadmin is vulnerable to directory traversal. The vulnerability exists in the View function in adminSystemController.go due to lack of sanitization in path value which allows an attacker to gain access outside of the intended directory...

7.5CVSS7.4AI score0.01438EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2021/10/26 2:45 p.m.25 views

CVE-2021-41185 Download file outside intended directory

Mycodo is an environmental monitoring and regulation system. An exploit in versions prior to 8.12.7 allows anyone with access to endpoints to download files outside the intended directory. A patch has been applied and a release made. Users should upgrade to version 8.12.7. As a workaround, users...

8.8CVSS8.8AI score0.01376EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2020/09/01 6:46 p.m.33 views

Directory Traversal in scott-blanch-weather-app

Affected versions of scott-blanch-weather-app resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable...

7.5CVSS7.1AI score0.02005EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2019/11/27 10:5 p.m.35 views

CVE-2019-18253

An attacker could use specially crafted paths in a specific request to read or delete files from Relion 670 Series versions 1p1r26, 1.2.3.17, 2.0.0.10, RES670 2.0.0.4, 2.1.0.1, and prior outside the intended directory...

9.2AI score0.0198EPSS
Exploits0References1
Veracode
Veracode
added 2018/02/23 2:43 a.m.16 views

Path Traversal

resolve-path is vulnerable path traversal attacks. A malicious user can access areas outside of the intended target directory by using a url containing ../...

7.5CVSS7.3AI score0.0241EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder