Lucene search
K

27 matches found

Nuclei
Nuclei
added 2 days ago39 views

Ulterius Server < 1.9.5.0 - Directory Traversal

Ulterius Server before 1.9.5.0 allows HTTP server directory traversal via the process function in RemoteTaskServer/WebServer/HttpServer.cs. id: CVE-2017-16806 info: name: Ulterius Server 1.9.5.0 - Directory Traversal author: geeknik severity: high description: Ulterius Server before 1.9.5.0 allow...

7.5CVSS7.1AI score0.91496EPSS
Exploits6References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-0295

Malware in sbrugna...

7.5CVSS7.6AI score0.02005EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0223

Malware in sbrugna...

7.5CVSS7.6AI score0.02005EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-0631

Malware in sbrugna...

7.5CVSS7.6AI score0.01606EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-1277

Malware in sbrugna...

7.5CVSS7.6AI score0.02005EPSS
Exploits1References5
OSV
OSV
added 2025/07/23 6:33 a.m.5 views

GHSA-3R3J-4VRW-884J files-bucket-server vulnerable to Directory Traversal

All versions of the package files-bucket-server are vulnerable to Directory Traversal, where an attacker can traverse the file system and access files outside of the intended directory...

8.7CVSS6.8AI score0.00755EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/07/23 6:33 a.m.10 views

files-bucket-server vulnerable to Directory Traversal

All versions of the package files-bucket-server are vulnerable to Directory Traversal, where an attacker can traverse the file system and access files outside of the intended directory...

8.7CVSS6.8AI score0.00755EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2025/01/30 8:17 p.m.51 views

CVE-2025-0573

CVE-2025-0573 concerns the Sante PACS Server, where the vulnerability lies in the DCM file parsing that fails to validate a user-supplied path before file operations. This directory traversal can allow an unauthenticated, remote attacker to write arbitrary files on the server, running with the cu...

5.3CVSS5.3AI score0.01795EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/22 6:21 p.m.14 views

CVE-2023-25579 Directory traversal in Nextcloud server

Nextcloud server is a self hosted home cloud product. In affected versions the OC\Files\Node\Folder::getFullPath function was validating and normalizing the string in the wrong order. The function is used in the newFile and newFolder items, which may allow to creation of paths outside of ones own...

6CVSS6.7AI score0.00505EPSS
Exploits0References2
NVD
NVD
added 2022/08/18 7:15 p.m.21 views

CVE-2022-37422

Payara through 5.2022.2 allows directory traversal without authentication. This affects Payara Server, Payara Micro, and Payara Server Embedded...

7.5CVSS0.01065EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2021/10/07 1:23 p.m.15 views

CVE-2021-40978

The mkdocs 1.2.2 built-in dev-server allows directory traversal using the port 8000, enabling remote exploitation to obtain :sensitive information. NOTE: the vendor has disputed this as described in https://github.com/mkdocs/mkdocs/issues/2601. and https://github.com/nisdn/CVE-2021-40978/issues/1...

6.8AI score0.14759EPSS
Exploits2References4
Cvelist
Cvelist
added 2018/06/07 2:0 a.m.31 views

CVE-2017-16162

22lixian is a simple file server. 22lixian is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.4AI score0.02005EPSS
Exploits1References2
Cvelist
Cvelist
added 2018/06/07 2:0 a.m.23 views

CVE-2017-16108

gaoxiaotingtingting is an HTTP server. gaoxiaotingtingting is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.4AI score0.02005EPSS
Exploits1References2
Cvelist
Cvelist
added 2018/06/07 2:0 a.m.19 views

CVE-2017-16214

peiserver is a static file server. peiserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.4AI score0.02005EPSS
Exploits1References2
NVD
NVD
added 2018/06/04 7:29 p.m.26 views

CVE-2017-16038

f2e-server 1.12.11 and earlier is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. This is compounded by f2e-server requiring elevated privileges to run...

7.5CVSS7.5AI score0.02543EPSS
Exploits1References3
Hacker One
Hacker One
added 2018/05/29 6:4 a.m.35 views

Node.js third-party modules: [serve] Server Directory Traversal

I would like to report a Server Directory Traversal vulnerability in serve. It allows reading local files on the target server. Module module name: serve version: 7.0.1 npm page: https://www.npmjs.com/package/serve Module Description Assuming you would like to serve a static site, single page...

5CVSS7.2AI score0.0221EPSS
Exploits1
NVD
NVD
added 2018/04/20 8:29 p.m.14 views

CVE-2014-10073

The createresponse function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory...

7.5CVSS7.5AI score0.02261EPSS
Exploits0References4
Hacker One
Hacker One
added 2018/03/27 9:25 a.m.42 views

Node.js third-party modules: [mcstatic] Server Directory Traversal

I would like to report a Server Directory Traversal in mcstatic. It allows reading local files on the target server. Module module name: mcstatic version: 0.0.20 npm page: https://www.npmjs.com/package/mcstatic Module Description Static Http server for mocking and stuff Vulnerability Steps To...

5CVSS0.2AI score0.01821EPSS
Exploits0
Hacker One
Hacker One
added 2017/12/08 5:26 p.m.15 views

Node.js third-party modules: [featurebook] Specification Server Directory Traversal via Crafted Browser Request

Hi, A crafted request can be leveraged to traverse the directory structure of a host using the featurebook server package, and request arbitrary files outside of the specified web root. Module specification Name: featurebook Version: 0.0.32 latest release build Verified conditions Test server:...

6.9AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2017/10/24 12:0 a.m.31 views

Huawei HG255s - Server Directory Traversal Vulnerability

Document Title: =============== Huawei HG255s - Server Directory Traversal Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2100 Video: https://www.youtube.com/watch?v=6XxTh7brPLg Advisory: https://www.vulnerability-lab.com/getcontent.php?id=2099 Release...

7.4AI score
Exploits0
Rows per page
Query Builder