Total
6472 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2008-1751 | 1 Ksemail | 1 Ksemail | 2024-08-07 | N/A |
Multiple directory traversal vulnerabilities in index.php in Ksemail allow remote attackers to read arbitrary local files via a .. (dot dot) in the (1) language and (2) lang parameters. | ||||
CVE-2008-1696 | 1 Dazphp | 1 Dazphpnews | 2024-08-07 | N/A |
Directory traversal vulnerability in makepost.php in DaZPHPNews 0.1-1, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the prefixdir parameter. | ||||
CVE-2008-1702 | 1 E107 | 2 E107, My Gallery | 2024-08-07 | N/A |
Absolute path traversal vulnerability in dload.php in the my_gallery 2.3 plugin for e107 allows remote attackers to obtain sensitive information via a full pathname in the file parameter. NOTE: some of these details are obtained from third party information. | ||||
CVE-2008-1755 | 1 Zekewalker | 1 World Of Phaos | 2024-08-07 | N/A |
Directory traversal vulnerability in the showSource function in showSource.php in World of Phaos 4.0.1 allows remote attackers to read arbitrary files via directory traversal sequences in the file parameter. | ||||
CVE-2008-1642 | 1 Savas Place | 1 Savas Guestbook | 2024-08-07 | N/A |
Directory traversal vulnerability in index.php in Sava's GuestBook 2.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | ||||
CVE-2008-1652 | 1 Perlbal | 1 Perlbal | 2024-08-07 | N/A |
Directory traversal vulnerability in the _serve_request_multiple function in lib/Perlbal/ClientHTTPBase.pm in Perlbal before 1.70, when concat get is enabled, allows remote attackers to read arbitrary files in a parent directory via a directory traversal sequence in an unspecified parameter. NOTE: some of these details are obtained from third party information. | ||||
CVE-2008-1620 | 1 2x | 1 Thinclientserver | 2024-08-07 | N/A |
Directory traversal vulnerability in 2X TFTP service (TFTPd.exe) 3.2.0.0 and earlier in 2X ThinClientServer 5.0_sp1-r3497 and earlier allows remote attackers to read or overwrite arbitrary files via a ... (dot dot dot) in the filename. | ||||
CVE-2008-1651 | 1 Myiosoft | 1 Easynews | 2024-08-07 | N/A |
Directory traversal vulnerability in admin/login.php in EasyNews 4.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter. | ||||
CVE-2008-1645 | 1 Guillaume Meister | 1 Php Spammanager | 2024-08-07 | N/A |
Directory traversal vulnerability in body.php in phpSpamManager (phpSM) 0.53 beta allows remote attackers to read arbitrary local files via a .. (dot dot) in the filename parameter. | ||||
CVE-2008-1624 | 1 Whorl Ltd | 1 Jshop Server | 2024-08-07 | N/A |
Directory traversal vulnerability in v2demo/page.php in Jshop Server 1.x through 2.x allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the xPage parameter. | ||||
CVE-2008-1606 | 1 Elastic Path | 1 Elastic Path | 2024-08-07 | N/A |
Multiple directory traversal vulnerabilities in Elastic Path (EP) 4.1 and 4.1.1 allow remote attackers to (1) download arbitrary files via a .. (dot dot) in the file parameter to manager/getImportFileRedirect.jsp, (2) upload arbitrary files via a "..\" (dot dot backslash) in the file parameter to importData.jsp, and (3) list directory contents via a .. (dot dot) in the dir parameter to manager/fileManager.jsp. | ||||
CVE-2008-1564 | 1 File-transfer | 1 File Transfer | 2024-08-07 | N/A |
Directory traversal vulnerability in Dan Costin File Transfer before 1.2f allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) in the filename. | ||||
CVE-2008-1571 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Directory traversal vulnerability in the embedded web server in Image Capture in Apple Mac OS X before 10.5 allows remote attackers to read arbitrary files via directory traversal sequences in the URI. | ||||
CVE-2008-1541 | 1 His | 1 Webshop | 2024-08-07 | N/A |
Directory traversal vulnerability in cgi-bin/his-webshop.pl in HIS Webshop 2.50 allows remote attackers to read arbitrary files via a .. (dot dot) in the t parameter. | ||||
CVE-2008-1565 | 2 Hotscripts, Phpbb | 2 Pjirc, Pjirc Module | 2024-08-07 | N/A |
Directory traversal vulnerability in forum/irc/irc.php in the PJIRC 0.5 module for phpBB allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the phpEx parameter. | ||||
CVE-2008-1537 | 1 Powerscripts | 1 Powerbook | 2024-08-07 | N/A |
Directory traversal vulnerability in pb_inc/admincenter/index.php in PowerScripts PowerBook 1.21 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathname or an ftp, ftps, or ssh2.sftp URL. | ||||
CVE-2008-1555 | 1 Bolinos | 1 Bolinos | 2024-08-07 | N/A |
Directory traversal vulnerability in system/_b/contentFiles/gbincluder.php in BolinOS 4.6.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the _bFileToInclude parameter. | ||||
CVE-2008-1553 | 1 Topper | 1 Toppermod | 2024-08-07 | N/A |
Directory traversal vulnerability in mod.php in TopperMod 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the to parameter. | ||||
CVE-2008-1534 | 1 Powerscripts | 1 Powerphpboard | 2024-08-07 | N/A |
Multiple directory traversal vulnerabilities in PowerPHPBoard 1.00b allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) settings[footer] parameter to footer.inc.php and the (2) settings[header] parameter to header.inc.php. | ||||
CVE-2008-1512 | 1 Phpbb | 1 Module Xs | 2024-08-07 | N/A |
Directory traversal vulnerability in admin/admin_xs.php in eXtreme Styles module (XS-Mod) 2.3.1 and 2.4.0 for phpBB allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the phpEx parameter. NOTE: some of these details are obtained from third party information. |