PT-2026-40453

Name of the Vulnerable Software and Affected Versions Linux ksmbd affected versions not specified Description A remote memory corruption issue exists in the ACL inheritance path. Remote clients with directory creation permissions can trigger a heap out-of-bounds read and subsequent heap corruptio...

EUVD-2015-5632

Malware in sbrugna...

EUVD-2004-2361

Malware in sbrugna...

CVE-2021-25156

A remote arbitrary directory create vulnerability was discovered in some Aruba Instant Access Point IAP products in versions: Aruba Instant 6.4.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.5.x: 8.5.0.11 and below;...

PT-2023-26965 · Softing · Softing Secure Integration Server

Name of the Vulnerable Software and Affected Versions: Softing Secure Integration Server affected versions not specified Description: This issue allows remote attackers to create directories on affected installations, despite requiring authentication to exploit. The flaw exists within the handlin...

The vulnerability of the `ziparchive::extractto` function in the PHP programming language lies in its lack of name-based path limitation, allowing attackers to create arbitrary directories.

The vulnerability of the ziparchive::extractto function in the PHP programming language is related to deficiencies in pathname restrictions for directories. Exploiting this vulnerability could allow an attacker to create arbitrary directories remotely...

PT-2021-5284 · Jenkins · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.318 and earlier Jenkins LTS versions 2.303.2 and earlier Description: The issue is related to a lack of authorization procedure in the Jenkins automation server. This allows a remote attacker to create parent directories in...

CVE-2021-25156

A remote arbitrary directory create vulnerability was discovered in some Aruba Instant Access Point IAP products in versions: Aruba Instant 6.4.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.5.x: 8.5.0.11 and below;...

Aruba Access Points 输入验证错误漏洞

Aruba Access Points is a wireless network from Aruba USA. It provides Internet access. A security vulnerability exists in Aruba Instant Access Points, which can be exploited by an attacker to remotely create arbitrary directories. The following products and versions are affected: Aruba Instant...

Cisco Ultra Services Framework Remote Security Bypass Vulnerability

Cisco Ultra Services Framework is the United States Cisco Cisco a smart online services payment platform. A security vulnerability exists in the AutoVNF login function in Cisco Ultra Services Framework, which is a program that fails to perform sufficient detection when creating a directory on a...

Joomla 1.5.12 Code Execution Via TinyMCE

?php / Joomla 1.5.12 Remote Code Execution via TinyMCE upload vulnerability Tested against : - Joomla 1.5.12 / Ubuntu 8.10 / Apache 2.2.9 - Joomla 1.5.12 / Windows XP SP2 / Apache 2.2.12 Luca "daath" De Fulgentis - daath at nibblesec.org http://blog.nibblesec.org / / daath@shaytan:$ php...

BRS Webweaver 1.0 1 - MKDir Directory Traversal

BRS Webweaver 1.0 1 - MKDir Directory Traversal source: https://www.securityfocus.com/bid/6585/info WebWeaver's FTP component has a flaw which can permit a remote user to create directories outside the FTP root. By executing the mkdir command on an ftp server with dot-dot-slash ..\ directory...