映射到 CWE-639,CWE-22 的搜索结果 (2025)

CVE-2015-1429(发布:2017-10-06 18:29:00)NM
CVSS5.0

[原文]Directory traversal vulnerability in Cybele Software Thinfinity Remote Desktop Workstation 3.0.0.3 32-bit and 64-bit allows remote attackers to download arbitrary files via a .. (dot dot) in an unspecified parameter.

CVE-2017-1577(发布:2017-09-27 21:29:02)NMS
CVSS5.0

[原文]IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 132117.

CVE-2017-7974(发布:2017-09-25 21:29:03)NM
CVSS7.5

[原文]A path traversal information disclosure vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which an unauthenticated user can execute arbitrary code and exfiltrate files.

CVE-2017-8007(发布:2017-09-21 21:29:25)NMPS
CVSS6.5

[原文]In EMC ViPR SRM, Storage M&R, VNX M&R, and M&R (Watch4Net) for SAS Solution Packs, the Webservice Gateway is affected by a directory traversal vulnerability. Attackers with knowledge of Webservice Gateway credentials could potentially exploit this vulnerability to access unauthorized information, and modify or delete data, by supplying specially crafted strings in input parameters of the web service call.

CVE-2016-6795(发布:2017-09-20 13:29:00)NMS
CVSS7.5

[原文]In the Convention plugin in Apache Struts 2.3.20 through 2.3.30, it is possible to prepare a special URL which will be used for path traversal and execution of arbitrary code on server side.

CVE-2015-4074(发布:2017-09-20 12:29:00)NMCP
CVSS5.0

[CNNVD]Joomla! Helpdesk Pro插件路径遍历漏洞--Joomla!是美国Open Source Matters团队开发的一套开源的内容管理系统(CMS),该系统提供RSS馈送、网站搜索等功能。Helpdesk Pro是其中的一个专业的票务系统帮助台扩展组件。 Joomla! Helpdesk Pro插件1.4.0之前版本中存在路径...

首页上一页12345678下一页尾页 第2页 / 共338页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站