Directory traversal vulnerability in Arihiro Kurata Kantan WEB Server 1.8 and earlier allows remote attackers to read arbitrary files via unknown vectors.
Max CVSS
5.0
EPSS Score
0.41%
Published
2008-10-30
Updated
2017-08-08
Directory traversal vulnerability in update.php in MyKtools 2.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the langage parameter.
Max CVSS
7.5
EPSS Score
1.79%
Published
2008-10-29
Updated
2017-09-29
Directory traversal vulnerability in admin/centre.php in MyForum 1.3, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the padmin parameter.
Max CVSS
6.8
EPSS Score
1.52%
Published
2008-10-29
Updated
2017-09-29
Directory traversal vulnerability in main/main.php in QuestCMS allows remote attackers to read arbitrary local files via a .. (dot dot) in the theme parameter.
Max CVSS
5.0
EPSS Score
0.47%
Published
2008-10-28
Updated
2017-09-29
Directory traversal vulnerability in the get_category_template function in wp-includes/theme.php in WordPress 2.3.3 and earlier, and 2.5, allows remote attackers to include and possibly execute arbitrary PHP files via the cat parameter in index.php. NOTE: some of these details are obtained from third party information.
Max CVSS
9.3
EPSS Score
0.85%
Published
2008-10-28
Updated
2017-08-08
Directory traversal vulnerability in the eXtplorer module (com_extplorer) 2.0.0 RC2 and earlier in Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter in a show_error action.
Max CVSS
5.0
EPSS Score
2.37%
Published
2008-10-28
Updated
2017-09-29
Directory traversal vulnerability in download.php in BuzzyWall 1.3.1 allows remote attackers to read arbitrary local files via a .. (dot dot) in the id parameter.
Max CVSS
5.0
EPSS Score
2.25%
Published
2008-10-28
Updated
2017-09-29
Directory traversal vulnerability in download_file.php in PHP-Daily allows remote attackers to read arbitrary local files via a .. (dot dot) in the fichier parameter.
Max CVSS
5.0
EPSS Score
0.34%
Published
2008-10-28
Updated
2017-09-29
Directory traversal vulnerability in index.php in FAR-PHP 1.00, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the c parameter.
Max CVSS
5.0
EPSS Score
1.86%
Published
2008-10-27
Updated
2018-10-11
Directory traversal vulnerability in templater.php in the ZZ_Templater module in TinyCMS 1.1.2, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the config[template] parameter.
Max CVSS
5.1
EPSS Score
1.56%
Published
2008-10-27
Updated
2017-09-29
Directory traversal vulnerability in index.php in PlugSpace 0.1, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the navi parameter.
Max CVSS
6.8
EPSS Score
0.81%
Published
2008-10-24
Updated
2017-09-29
Directory traversal vulnerability in help/mini.php in X7 Chat 2.0.1 A1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the help_file parameter, a different vector than CVE-2006-2156.
Max CVSS
7.5
EPSS Score
1.99%
Published
2008-10-23
Updated
2017-09-29
Directory traversal vulnerability in pages/showblog.php in LnBlog 0.9.0 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the plugin parameter.
Max CVSS
6.8
EPSS Score
0.81%
Published
2008-10-23
Updated
2017-09-29
Directory traversal vulnerability in index.php in BbZL.PhP 0.92 allows remote attackers to access unauthorized directories via a .. (dot dot) in the lien_2 parameter.
Max CVSS
5.0
EPSS Score
3.11%
Published
2008-10-23
Updated
2017-09-29
Multiple directory traversal vulnerabilities in PhpWebGallery 1.3.4 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) user[language] and (2) user[template] parameters to (a) init.inc.php, and (b) the user[language] parameter to isadmin.inc.php.
Max CVSS
7.5
EPSS Score
0.76%
Published
2008-10-22
Updated
2017-09-29
Directory traversal vulnerability in the Image Browser (com_imagebrowser) 0.1.5 component for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the folder parameter to index.php.
Max CVSS
9.0
EPSS Score
1.02%
Published
2008-10-22
Updated
2017-09-29
Directory traversal vulnerability in rss.php in ArabCMS 2.0 beta 1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the rss parameter.
Max CVSS
7.5
EPSS Score
1.79%
Published
2008-10-22
Updated
2017-09-29
Directory traversal vulnerability in admin.php in LokiCMS 0.3.4, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
Max CVSS
6.8
EPSS Score
2.10%
Published
2008-10-22
Updated
2018-10-11
Multiple directory traversal vulnerabilities in index.php in Kure 0.6.3, when magic_quotes_gpc is disabled, allow remote attackers to read and possibly execute arbitrary local files via a .. (dot dot) in the (1) post and (2) doc parameters.
Max CVSS
6.8
EPSS Score
1.44%
Published
2008-10-21
Updated
2017-09-29
Directory traversal vulnerability in index.php in Fritz Berger yet another php photo album - next generation (yappa-ng) 2.3.2 and possibly other versions through 2.3.3-beta0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the album parameter.
Max CVSS
6.8
EPSS Score
2.10%
Published
2008-10-21
Updated
2017-09-29
Directory traversal vulnerability in index.php in Post Affiliate Pro 2.0 allows remote authenticated users to read and possibly execute arbitrary local files via a .. (dot dot) in the md parameter.
Max CVSS
6.5
EPSS Score
1.13%
Published
2008-10-18
Updated
2017-09-29
Directory traversal vulnerability in index.php in Sports Clubs Web Panel 0.0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter.
Max CVSS
10.0
EPSS Score
1.61%
Published
2008-10-16
Updated
2017-09-29
Directory traversal vulnerability in notes.php in Phlatline's Personal Information Manager (pPIM) 1.01 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the id parameter in an edit action.
Max CVSS
7.5
EPSS Score
1.12%
Published
2008-10-09
Updated
2017-09-29
Multiple directory traversal vulnerabilities in CCMS 3.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the skin parameter to (1) index.php, (2) forums.php, (3) admin.php, (4) header.php, (5) pages/story.php and (6) pages/poll.php.
Max CVSS
10.0
EPSS Score
2.50%
Published
2008-10-09
Updated
2017-09-29
Multiple directory traversal vulnerabilities in JMweb MP3 Music Audio Search and Download Script allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the src parameter to (1) listen.php and (2) download.php.
Max CVSS
7.5
EPSS Score
2.50%
Published
2008-10-09
Updated
2017-09-29
40 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!