Total
6658 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2012-4596 | 1 Mcafee | 1 Email Gateway | 2013-04-11 | 4.3 MEDIUM | N/A |
| Directory traversal vulnerability in McAfee Email Gateway (MEG) 7.0.0 and 7.0.1 allows remote authenticated users to bypass intended access restrictions and download arbitrary files via a crafted URL. | |||||
| CVE-2012-0419 | 1 Novell | 1 Groupwise | 2013-04-05 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in the agent HTTP interfaces in Novell GroupWise 8.0 before Support Pack 3 and 2012 before Support Pack 1 allows remote attackers to read arbitrary files via directory traversal sequences in a request. | |||||
| CVE-2011-1595 | 1 Rdesktop | 1 Rdesktop | 2013-04-05 | 4.3 MEDIUM | N/A |
| Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname. | |||||
| CVE-2013-1079 | 1 Novell | 1 Zenworks Configuration Management | 2013-04-02 | 6.8 MEDIUM | N/A |
| Directory traversal vulnerability in the ISCreateObject method in an ActiveX control in InstallShield\ISProxy.dll in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.3 through 11.2 allows remote attackers to execute arbitrary local DLL files via a crafted web page that also calls the Initialize method. | |||||
| CVE-2012-0410 | 1 Novell | 1 Groupwise | 2013-04-02 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in WebAccess in Novell GroupWise before 8.03 allows remote attackers to read arbitrary files via the User.interface parameter. | |||||
| CVE-2013-1082 | 1 Novell | 1 Zenworks Mobile Management | 2013-03-29 | 7.5 HIGH | N/A |
| Directory traversal vulnerability in DUSAP.php in Novell ZENworks Mobile Management before 2.7.1 allows remote attackers to include and execute arbitrary local files via the language parameter. | |||||
| CVE-2013-1608 | 1 Symantec | 1 Netbackup Appliance | 2013-03-26 | 6.7 MEDIUM | N/A |
| Directory traversal vulnerability in the Management Console on the Symantec NetBackup (NBU) appliance 2.0.x allows remote attackers to read arbitrary files via unspecified vectors. | |||||
| CVE-2013-0679 | 1 Siemens | 2 Simatic Pcs7, Wincc | 2013-03-22 | 4.0 MEDIUM | N/A |
| Directory traversal vulnerability in the web server in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote authenticated users to read arbitrary files via vectors involving a query for a pathname. | |||||
| CVE-2013-0671 | 1 Siemens | 1 Wincc Tia Portal | 2013-03-22 | 4.0 MEDIUM | N/A |
| Directory traversal vulnerability in Siemens WinCC (TIA Portal) 11 allows remote authenticated users to read HMI web-application source code and user-defined scripts via a crafted URL. | |||||
| CVE-2013-0332 | 1 Zoneminder | 1 Zoneminder | 2013-03-21 | 5.0 MEDIUM | N/A |
| Multiple directory traversal vulnerabilities in ZoneMinder 1.24.x before 1.24.4 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) view, (2) request, or (3) action parameter. | |||||
| CVE-2013-2560 | 1 Foscam | 1 Fi8919w | 2013-03-20 | 7.8 HIGH | N/A |
| Directory traversal vulnerability in the web interface on Foscam devices with firmware before 11.37.2.49 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI, as demonstrated by discovering (1) web credentials or (2) Wi-Fi credentials. | |||||
| CVE-2013-1469 | 1 Piwigo | 1 Piwigo | 2013-03-19 | 4.0 MEDIUM | N/A |
| Directory traversal vulnerability in install.php in Piwigo before 2.4.7 allows remote attackers to read and delete arbitrary files via a .. (dot dot) in the dl parameter. | |||||
| CVE-2013-1081 | 1 Novell | 1 Zenworks Mobile Management | 2013-03-18 | 7.5 HIGH | N/A |
| Directory traversal vulnerability in MDM.php in Novell ZENworks Mobile Management (ZMM) 2.6.1 and 2.7.0 allows remote attackers to include and execute arbitrary local files via the language parameter. | |||||
| CVE-2013-1627 | 2 Advantech, Indusoft | 2 Advantech Studio, Web Studio | 2013-03-18 | 7.8 HIGH | N/A |
| Absolute path traversal vulnerability in NTWebServer.exe in Indusoft Studio 7.0 and earlier and Advantech Studio 7.0 and earlier allows remote attackers to read arbitrary files via a full pathname in an argument to the sub_401A90 CreateFileW function. | |||||
| CVE-2012-3011 | 1 Fultek | 1 Wintr Scada | 2013-03-02 | 7.8 HIGH | N/A |
| Directory traversal vulnerability in the web server in Fultek WinTr Scada 4.0.5 and earlier allows remote attackers to read arbitrary files via a crafted request. | |||||
| CVE-2012-4940 | 1 Gecad | 1 Axigen Free Mail Server | 2013-02-26 | 6.4 MEDIUM | N/A |
| Multiple directory traversal vulnerabilities in the View Log Files component in Axigen Free Mail Server allow remote attackers to read or delete arbitrary files via a .. (dot dot) in (1) the fileName parameter in a download action to source/loggin/page_log_dwn_file.hsp, or the fileName parameter in (2) an edit action or (3) a delete action to the default URI. | |||||
| CVE-2013-0705 | 1 Lsi | 1 3ware Disk Manager | 2013-02-19 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in LSI 3ware Disk Manager (3DM) before 2 allows remote attackers to read arbitrary files via unspecified vectors. | |||||
| CVE-2012-2293 | 1 Emc | 2 Rsa Archer Egrc, Rsa Archer Smartsuite | 2013-02-07 | 6.5 MEDIUM | N/A |
| Directory traversal vulnerability in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allows remote authenticated users to upload files, and consequently execute arbitrary code, via a relative path. | |||||
| CVE-2012-5051 | 1 Vmware | 1 Capacityiq | 2013-02-02 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in VMware CapacityIQ 1.5.x allows remote attackers to read arbitrary files via unspecified vectors. | |||||
| CVE-2012-1671 | 1 Nicolas Tormo | 1 Phppaleo | 2013-01-31 | 6.8 MEDIUM | N/A |
| Directory traversal vulnerability in index.php in phpPaleo 4.8b155 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter. | |||||