Total
6658 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2010-4406 | 1 Brunetton | 1 Littlephpgallery | 2010-12-16 | 6.8 MEDIUM | N/A |
| Directory traversal vulnerability in gallery.php in Brunetton LittlePhpGallery 1.0.2, when magic_quotes_gpc is disabled, allows remote attackers to list, include, and execute arbitrary local files via a ..// (dot dot slash slash) in the repertoire parameter. | |||||
| CVE-2010-1829 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2010-12-10 | 6.0 MEDIUM | N/A |
| Directory traversal vulnerability in AFP Server in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote authenticated users to execute arbitrary code by creating files that are outside the bounds of a share. | |||||
| CVE-2010-3842 | 1 Curl | 1 Curl | 2010-10-28 | 5.8 MEDIUM | N/A |
| Absolute path traversal vulnerability in curl 7.20.0 through 7.21.1, when the --remote-header-name or -J option is used, allows remote servers to create or overwrite arbitrary files by using \ (backslash) as a separator of path components within the Content-disposition HTTP header. | |||||
| CVE-2007-6736 | 1 G.rodola | 1 Pyftpdlib | 2010-10-20 | 6.5 MEDIUM | N/A |
| Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.2.0 allow remote authenticated users to access arbitrary files and directories via a .. (dot dot) in a (1) LIST, (2) STOR, or (3) RETR command. | |||||
| CVE-2008-7262 | 1 G.rodola | 1 Pyftpdlib | 2010-10-20 | 6.5 MEDIUM | N/A |
| Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command. | |||||
| CVE-2010-2797 | 1 Cmsmadesimple | 1 Cms Made Simple | 2010-10-11 | 7.5 HIGH | N/A |
| Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the default_cms_lang parameter to an admin script, as demonstrated by admin/addbookmark.php, a different vulnerability than CVE-2008-5642. | |||||
| CVE-2010-3688 | 1 Netartmedia | 1 Websiteadmin | 2010-09-30 | 7.5 HIGH | N/A |
| Directory traversal vulnerability in ADMIN/login.php in NetArtMEDIA WebSiteAdmin allows remote emote attackers to include and execute arbitrary local files via directory traversal sequences in the lng parameter. | |||||
| CVE-2010-3468 | 1 Blueriver | 2 Mura Cms, Sava Cms | 2010-09-30 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in fileManager.cfc in Mura CMS 5.1 before 5.1.498 and 5.2 before 5.2.2809, and Sava CMS 5 through 5.2, allows remote attackers to read arbitrary files via a .. (dot dot) in the FILEID parameter to the default URI under tasks/render/file/. | |||||
| CVE-2010-3306 | 1 Salvo G. Tomaselli | 1 Weborf | 2010-09-27 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in the modURL function in instance.c in Weborf before 0.12.3 allows remote attackers to read arbitrary files via ..%2f sequences in a URI. | |||||
| CVE-2010-3487 | 1 Yellosoft | 1 Pinky | 2010-09-23 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in YelloSoft Pinky 1.0 for Windows allows remote attackers to read arbitrary files via a %5C (encoded backslash) in the URL. | |||||
| CVE-2010-3203 | 2 Joomla, Xmlswf | 2 Joomla\!, Com Picsell | 2010-09-06 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in the PicSell (com_picsell) component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the dflink parameter in a prevsell dwnfree action to index.php. | |||||
| CVE-2010-3098 | 1 Ftprush | 1 Ftprush | 2010-08-24 | 9.3 HIGH | N/A |
| Directory traversal vulnerability in IoRush Software FTP Rush 1.1.3 and possibly earlier allows remote FTP servers to overwrite arbitrary files via a "..\" (dot dot backslash) in a filename. | |||||
| CVE-2010-3097 | 1 Winfrigate | 1 Frigate 3 | 2010-08-24 | 9.3 HIGH | N/A |
| Directory traversal vulnerability in WinFrigate Frigate 3 FTP client 3.36 and earlier allows remote FTP servers to overwrite arbitrary files via a "..\" (dot dot backslash) in a filename. | |||||
| CVE-2010-3099 | 1 Smartftp | 1 Smartftp | 2010-08-23 | 9.3 HIGH | N/A |
| Directory traversal vulnerability in SmartSoft Ltd SmartFTP Client 4.0.1124.0, and possibly other versions before 4.0 Build 1133, allows remote FTP servers to overwrite arbitrary files via a "..\" (dot dot backslash) in a filename. NOTE: some of these details are obtained from third party information. | |||||
| CVE-2010-3101 | 1 Ftpx | 1 Ftp Explorer | 2010-08-23 | 9.3 HIGH | N/A |
| Directory traversal vulnerability in FTPx Corp FTP Explorer 10.5.19.1 for Windows, and probably earlier versions, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename. | |||||
| CVE-2010-3100 | 1 Portaplus | 1 Porta\+ Ftp Client | 2010-08-23 | 9.3 HIGH | N/A |
| Directory traversal vulnerability in Porta+ FTP Client 4.1, and possibly other versions, allows remote FTP servers to overwrite arbitrary files via a directory traversal sequences in a filename. | |||||
| CVE-2010-3104 | 1 Deskshare | 1 Auto Ftp Manager | 2010-08-23 | 9.3 HIGH | N/A |
| Directory traversal vulnerability in DeskShare AutoFTP Manager 4.31, and probably earlier versions, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename. | |||||
| CVE-2010-3103 | 1 Ftpgetter | 1 Ftpgetter | 2010-08-23 | 9.3 HIGH | N/A |
| Directory traversal vulnerability in FTPGetter Team FTPGetter 3.51.0.05, and probably earlier versions, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename. | |||||
| CVE-2010-3102 | 1 3dftp | 1 3d-ftp Client | 2010-08-23 | 9.3 HIGH | N/A |
| Directory traversal vulnerability in SiteDesigner Technologies, Inc. 3D-FTP Client 9.0 build 2, and probably earlier versions, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename. | |||||
| CVE-2009-4896 | 1 Mlmmj | 1 Mlmmj | 2010-08-03 | 6.5 MEDIUM | N/A |
| Multiple directory traversal vulnerabilities in the mlmmj-php-admin web interface for Mailing List Managing Made Joyful (mlmmj) 1.2.15 through 1.2.17 allow remote authenticated users to overwrite, create, or delete arbitrary files, or determine the existence of arbitrary directories, via a .. (dot dot) in a list name in a (1) edit or (2) save action. | |||||