directory software vulnerabilities
vulnerabilities.aspcode.net
Searching directory software vulnerabilities
A system-critical Unix file or directory has in
system-critical
|
inappropriate
|
permissions
|
directory
|
Unix
|
file
|
has
|
A system-critical Unix file or directory has inappropriate permissions.
A system-critical Windows NT file or directory
system-critical
|
inappropriate
|
permissions
|
directory
|
Windows
|
file
|
has
|
A system-critical Windows NT file or directory has inappropriate permissions.
A URL for a WWW directory allows auto-indexing,
auto-indexing
|
indexhtml
|
directory
|
provides
|
contain
|
allows
|
files
|
which
|
file
|
does
|
list
|
URL
|
not
|
all
|
A URL for a WWW directory allows auto-indexing, which provides a list of all files in that directory if it does not contain an index.html file.
Directory traversal vulnerability in Shambala 4
vulnerability
|
attackers
|
Directory
|
traversal
|
Shambala
|
command
|
escape
|
allows
|
remote
|
"CWD
|
root
|
FTP
|
via
|
Directory traversal vulnerability in Shambala 4.5 allows remote attackers to escape the FTP root directory via "CWD ..." command.
Directory traversal vulnerability in cosmicpro.
vulnerability
|
cosmicprocgi
|
information
|
Cosmicperl
|
sensitive
|
traversal
|
Directory
|
attacker
|
allows
|
remote
|
gain
|
via
|
Pro
|
Directory traversal vulnerability in cosmicpro.cgi in Cosmicperl Directory Pro 2.0 allows remote attacker to gain sensitive information via a .. (dot dot) in the SHOW parameter.
Directory traversal vulnerability in edit_actio
edit_actioncgi
|
vulnerability
|
Directory
|
traversal
|
Webmin
|
Directory traversal vulnerability in edit_action.cgi of Webmin Directory 0.91 allows attackers to gain privileges via a '..' (dot dot) in the argument.
GroupWise WebAccess 5.5 with directory indexing
lowercase
|
arbitrary
|
directory
|
GroupWise
|
WebAccess
|
attacker
|
contents
|
indexing
|
enabled
|
request
|
remote
|
allows
|
"get"
|
view
|
HTTP
|
via
|
GroupWise WebAccess 5.5 with directory indexing enabled allows a remote attacker to view arbitrary directory contents via an HTTP request with a lowercase "get".
Directory traversal vulnerability in chuid 1.2
vulnerability
|
attackers
|
ownership
|
Directory
|
traversal
|
outside
|
earlier
|
upload
|
change
|
allows
|
remote
|
chuid
|
files
|
via
|
Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outside of the upload directory via a .. (dot dot) attack.
PowerChute plus 5.0.2 creates a "Pwrchute" dire
PowerChute
|
plus
|
PowerChute plus 5.0.2 creates a "Pwrchute" directory during installation that is shared and world writeable, which could allow remote attackers to modify or create files in that directory.
Directory traversal vulnerability in Snowblind
vulnerability
|
arbitrary
|
attackers
|
Snowblind
|
Directory
|
traversal
|
contents
|
remote
|
Server
|
allows
|
list
|
via
|
Web
|
Directory traversal vulnerability in Snowblind Web Server 1.0 allows remote attackers to list arbitrary directory contents via a ... (triple dot) in an HTTP request.
Directory traversal vulnerability in extproc in
$ORACLE_HOME\bin
|
vulnerability
|
libraries
|
arbitrary
|
attackers
|
traversal
|
Directory
|
outside
|
extproc
|
access
|
Oracle
|
allows
|
remote
|
10g
|
Directory traversal vulnerability in extproc in Oracle 9i and 10g allows remote attackers to access arbitrary libraries outside of the $ORACLE_HOME\bin directory.
Directory traversal vulnerability in Unzoo 4.4-
vulnerability
|
Directory
|
traversal
|
vectors
|
unknown
|
attack
|
impact
|
Unzoo
|
44-2
|
has
|
Directory traversal vulnerability in Unzoo 4.4-2 has unknown impact and attack vectors.
Directory traversal vulnerability in webadmin.n
vulnerability
|
webadminnsf
|
traversal
|
Directory
|
Domino
|
Lotus
|
Directory traversal vulnerability in webadmin.nsf for Lotus Domino R6 6.5.1 allows attackers to create and detect directories via a .. (dot dot) in the directory creation command.
The DIRECTORY objects in Oracle 8i through Orac
information
|
privileges
|
sensitive
|
operating
|
DIRECTORY
|
location
|
specific
|
objects
|
through
|
contain
|
object
|
obtain
|
allows
|
system
|
Oracle
|
which
|
users
|
read
|
10g
|
The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive information.
Directory traversal vulnerability in filemanage
filemanagercpp
|
vulnerability
|
attackers
|
Directory
|
traversal
|
MyServer
|
parent
|
allows
|
remote
|
root
|
list
|
URL
|
via
|
web
|
Directory traversal vulnerability in filemanager.cpp in MyServer 0.8 allows remote attackers to list the parent directory of the web root via a URL with a "..." (triple dot).
Dev-Editor 3.0 allows remote attackers to acces
Dev-Editor
|
directory
|
substring
|
attackers
|
outside
|
access
|
remote
|
allows
|
whose
|
root
|
name
|
any
|
web
|
Dev-Editor 3.0 allows remote attackers to access any directory outside the web root whose name is a substring of the web root directory name.
Directory traversal vulnerability in index.php
vulnerability
|
traversal
|
Directory
|
indexphp
|
before
|
Viewer
|
IDV
|
Directory traversal vulnerability in index.php in IDV Directory Viewer before 2005.1 allows remote attackers to view arbitrary directory contents via a .. (dot dot) in the dir parameter.
Directory traversal vulnerability in ELOG befor
vulnerability
|
Directory
|
traversal
|
before
|
ELOG
|
Directory traversal vulnerability in ELOG before 2.6.1 allows remote attackers to access arbitrary files outside of the elog directory via "../" (dot dot) sequences in the URL.
Cross-site scripting (XSS) vulnerability in dir
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in directory/index.php in Chipmunk directory allows remote attackers to inject arbitrary web script or HTML via the start parameter.
Directory traversal vulnerability in index.php
vulnerability
|
Directory
|
traversal
|
indexphp
|
Lister
|
PHP
|
Directory traversal vulnerability in index.php in PHP Directory Lister (dirLIST) before 0.1.1 allows remote attackers to list the contents of a parent directory via a .. (dot dot) in the folder parameter.
Software vulnerabilities results 1 to 20 of 1670
Page:
1
2
3
4
5
...
84
►