映射到 CWE-639,CWE-22 的搜索结果 (1889)

CVE-2016-4314(发布:2017-02-16 21:59:12)NMPS
CVSS4.0

[原文]Directory traversal vulnerability in the LogViewer Admin Service in WSO2 Carbon 4.4.5 allows remote authenticated administrators to read arbitrary files via a .. (dot dot) in the logFile parameter to downloadgz-ajaxprocessor.jsp.

CVE-2016-2087(发布:2017-01-18 12:59:00)NMS
CVSS6.8

[原文]Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. (dot dot) in the server name.

CVE-2016-3151(发布:2017-01-12 18:59:00)NMP
CVSS5.0

[原文]Directory traversal vulnerability in the wallpaper parsing functionality in Barco ClickShare CSC-1 devices with firmware before 01.09.03, CSM-1 devices with firmware before 01.06.02, and CSE-200 devices with firmware before 01.03.02 allows remote attackers to read /etc/shadow via unspecified vectors.

CVE-2016-4323(发布:2017-01-06 16:59:01)NMP
CVSS5.8

[原文]A directory traversal exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in an overwrite of files. A malicious server or someone with access to the network traffic can provide an invalid filename for a splash image triggering the vulnerability.

CVE-2016-2933(发布:2016-11-30 06:59:02)NMS
CVSS6.8

[原文]Directory traversal vulnerability in IBM BigFix Remote Control before 9.1.3 allows remote authenticated administrators to read arbitrary files via a crafted request.

CVE-2016-1429(发布:2016-08-07 20:59:02)NMS
CVSS7.8

[原文]Directory traversal vulnerability in the web interface on Cisco RV180 and RV180W devices allows remote attackers to read arbitrary files via a crafted HTTP request, aka Bug ID CSCuz43023.

首页上一页23456789下一页尾页 第4页 / 共315页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站