Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CNNVD
CNNVDadded 2022/09/05 12:0 a.m.2 views

Huawei HarmonyOS 路径遍历漏洞

Huawei HarmonyOS is an operating system from Huawei China Inc. A path traversal vulnerability exists in Huawei HarmonyOS, which stems from the failure of the number identification module to properly filter special elements in the path of a resource or file. An attacker could exploit this...

7.5CVSS6.6AI score0.00192EPSS
Exploits0References4
CNVD
CNVDadded 2022/07/13 12:0 a.m.29 views

AutomatedQuizEval path traversal vulnerability

AutomatedQuizEval, an automated quiz evaluation system from the personal developer Sravani Boinepelli, suffers from a path traversal vulnerability that stems from the failure of Flask's sendfile function to properly filter special elements in resource or file paths, which could be exploited by...

9.3CVSS4.5AI score0.00432EPSS
Exploits1References1
OSV
OSVadded 2022/05/14 1:10 a.m.1 views

GHSA-6QR6-X7JM-X2Q6 Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat

Directory traversal vulnerability in RequestUtil.java in Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.65, and 8.x before 8.0.27 allows remote authenticated users to bypass intended SecurityManager restrictions and list a parent directory via a /.. slash dot dot in a pathname used by a web...

4.3CVSS6.8AI score0.04459EPSS
Exploits0References45
CNVD
CNVDadded 2022/01/16 12:0 a.m.15 views

ChronoEngine ChronoForms Path Traversal Vulnerability

ChronoEngine ChronoForms is ChronoEngine company an easy to use and flexible Joomla form builder . A path traversal vulnerability exists in ChronoEngine ChronoForms that stems from the product failing to properly filter for special elements in the path of a resource or file. An attacker could use...

5.3CVSS5.1AI score0.52565EPSS
Exploits1References1
RedHat Linux
RedHat Linuxadded 2016/07/18 7:39 p.m.4 views

tomcat: URL Normalization issue

A directory traversal flaw was found in Tomcat's RequestUtil.java. A remote, authenticated user could use this flaw to bypass intended SecurityManager restrictions and list a parent directory via a '/..' in a pathname used by a web application in a getResource, getResourceAsStream, or...

4.3CVSS6.6AI score0.04459EPSS
Exploits0References5
Check Point Advisories
Check Point Advisoriesadded 2009/11/03 12:0 a.m.3 views

Microsoft ASP.NET Resource Paths Canonicalization (MS05-004; CVE-2004-0847)

The .NET framework is a windows framework for building and running software. The framework supports a variety of programming languages. A component of this framework is ASP.NET which allows for the development of dynamic Web applications in different programming languages. A vulnerability exists ...

7.5CVSS9.2AI score0.45572EPSS
Exploits1
Rows per page
Query Builder