Total
8266 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-66905 | 1 Takes | 1 Tkfiles | 2026-01-06 | N/A | 7.5 HIGH |
|
The Takes web framework's TkFiles take thru 2.0-SNAPSHOT fails to canonicalize HTTP request paths before resolving them against the filesystem. A remote attacker can include ../ sequences in the request path to escape the configured base directory and read arbitrary files from the host system.
|
|||||
| CVE-2025-59380 | 1 Qnap | 2 Qts, Quts Hero | 2026-01-06 | N/A | 4.9 MEDIUM |
|
A path traversal vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following versions:
QTS 5.2.8.3332 build 20251128 and later
QuTS hero h5.2.8.3321 build 20251117 and later
|
|||||
| CVE-2025-59381 | 1 Qnap | 2 Qts, Quts Hero | 2026-01-06 | N/A | 4.9 MEDIUM |
|
A path traversal vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following versions:
QTS 5.2.8.3332 build 20251128 and later
QuTS hero h5.2.8.3321 build 20251117 and later
|
|||||
| CVE-2024-32465 | 3 Debian, Fedoraproject, Git-scm | 3 Debian Linux, Fedora, Git | 2026-01-05 | N/A | 7.3 HIGH |
|
Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific protections to make that a safe operation even with an untrusted source repository, but vulnerabilities allow those protections to be bypassed. In the context of cloning local repositories owned by other users, this vulnerability has been covered in CVE-2024-32004. But there are circumstances wh ...
Show More |
|||||
| CVE-2025-14420 | 1 Pdfforge | 1 Pdf Architect | 2026-01-02 | N/A | 7.8 HIGH |
|
pdfforge PDF Architect CBZ File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of pdfforge PDF Architect. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of CBZ files. The issue results from the lack of proper validation of a user-supplied path prior to usin ...
Show More |
|||||
| CVE-2025-65815 | 1 Uniteddevelopers | 1 Document Reader\ | 2026-01-02 | N/A | 6.5 MEDIUM |
|
A lack of security checks in the file import process of AB TECHNOLOGY Document Reader: PDF, DOC, PPT v65.0 allows attackers to execute a directory traversal.
|
|||||
| CVE-2025-68916 | 1 Riello-ups | 1 Netman 208 | 2026-01-02 | N/A | 9.1 CRITICAL |
|
Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/certsupload.cgi /../ directory traversal for file upload with resultant code execution.
|
|||||
| CVE-2023-47467 | 1 Jeecg | 1 Jeecg Boot | 2026-01-02 | N/A | 6.5 MEDIUM |
|
Directory Traversal vulnerability in jeecg-boot v.3.6.0 allows a remote privileged attacker to obtain sensitive information via the file directory structure.
|
|||||
| CVE-2025-67442 | 1 Eve-ng | 1 Eve-ng | 2026-01-02 | N/A | 7.6 HIGH |
|
EVE-NG 6.4.0-13-PRO is vulnerable to Directory Traversal. The /api/export interface allows authenticated users to export lab files. This interface lacks effective input validation and filtering when processing file path parameters submitted by users.
|
|||||
| CVE-2025-53594 | 2026-01-02 | N/A | N/A | ||
|
A path traversal vulnerability has been reported to affect several product versions. If a local attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following versions:
Qfinder Pro Mac 7.13.0 and later
Qsync for Mac 5.1.5 and later
QVPN Device Client for Mac 2.2.8 and later
|
|||||
| CVE-2025-68279 | 1 Weblate | 1 Weblate | 2026-01-02 | N/A | 7.7 HIGH |
|
Weblate is a web based localization tool. In versions prior to 5.15.1, it was possible to read arbitrary files from the server file system using crafted symbolic links in the repository. Version 5.15.1 fixes the issue.
|
|||||
| CVE-2024-25183 | 1 Vvveb | 1 Vvvebjs | 2026-01-02 | N/A | 7.5 HIGH |
|
givanz VvvebJs 1.7.2 is vulnerable to Directory Traversal via scan.php.
|
|||||
| CVE-2025-15245 | 1 Dlink | 2 Dcs-850l, Dcs-850l Firmware | 2025-12-31 | 2.7 LOW | 3.5 LOW |
|
A vulnerability was found in D-Link DCS-850L 1.02.09. Affected is the function uploadfirmware of the component Firmware Update Service. The manipulation of the argument DownloadFile results in path traversal. The attack must originate from the local network. The exploit has been made public and could be used. This vulnerability only affects products that are no longer supported by the maintainer.
|
|||||
| CVE-2024-42718 | 1 Croogo | 1 Croogo | 2025-12-31 | N/A | 6.5 MEDIUM |
|
A path traversal vulnerability in Croogo CMS 4.0.7 allows remote attackers to read arbitrary files via a specially crafted path in the 'edit-file' parameter.
|
|||||
| CVE-2025-15225 | 1 Sun.net | 1 Wmpro | 2025-12-31 | N/A | 7.5 HIGH |
|
WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to read arbitrary system files.
|
|||||
| CVE-2025-15227 | 1 Welltend | 1 Bpmflowwebkit | 2025-12-31 | N/A | 7.5 HIGH |
|
BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Absolute Path Traversal to download arbitrary system files.
|
|||||
| CVE-2025-14850 | 1 Advantech | 1 Webaccess\/scada | 2025-12-31 | N/A | 8.1 HIGH |
|
Advantech WebAccess/SCADA is vulnerable to directory traversal, which may allow an attacker to delete arbitrary files.
|
|||||
| CVE-2022-1000 | 1 Prasathmani | 1 Tiny File Manager | 2025-12-31 | 7.5 HIGH | 9.8 CRITICAL |
|
Path Traversal in GitHub repository prasathmani/tinyfilemanager prior to 2.4.7.
|
|||||
| CVE-2021-40964 | 1 Prasathmani | 1 Tiny File Manager | 2025-12-31 | 4.3 MEDIUM | 6.5 MEDIUM |
|
A Path Traversal vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to upload a file (with Admin credentials or with the CSRF vulnerability) with the "fullpath" parameter containing path traversal strings (../ and ..\) in order to escape the server's intended working directory and write malicious files onto any directory on the computer.
|
|||||
| CVE-2021-45010 | 1 Prasathmani | 1 Tiny File Manager | 2025-12-31 | 6.5 MEDIUM | 8.8 HIGH |
|
A path traversal vulnerability in the file upload functionality in tinyfilemanager.php in Tiny File Manager before 2.4.7 allows remote attackers (with valid user accounts) to upload malicious PHP files to the webroot, leading to code execution.
|
|||||
| CVE-2020-12102 | 1 Prasathmani | 1 Tiny File Manager | 2025-12-31 | 6.8 MEDIUM | 7.7 HIGH |
|
In Tiny File Manager 2.4.1, there is a Path Traversal vulnerability in the ajax recursive directory listing functionality. This allows authenticated users to enumerate directories and files on the filesystem (outside of the application scope).
|
|||||
| CVE-2020-12103 | 1 Prasathmani | 1 Tiny File Manager | 2025-12-31 | 4.0 MEDIUM | 7.7 HIGH |
|
In Tiny File Manager 2.4.1 there is a vulnerability in the ajax file backup copy functionality which allows authenticated users to create backup copies of files (with .bak extension) outside the scope in the same directory in which they are stored.
|
|||||
| CVE-2025-15138 | 1 Prasathmani | 1 Tiny File Manager | 2025-12-31 | 5.8 MEDIUM | 4.7 MEDIUM |
|
A flaw has been found in prasathmani TinyFileManager up to 2.6. Affected by this issue is some unknown functionality of the file tinyfilemanager.php. This manipulation of the argument fullpath causes path traversal. Remote exploitation of the attack is possible. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
|
|||||
| CVE-2025-67653 | 1 Advantech | 1 Webaccess\/scada | 2025-12-31 | N/A | 4.3 MEDIUM |
|
Advantech WebAccess/SCADA is vulnerable to directory traversal, which may allow an attacker to determine the existence of arbitrary files.
|
|||||
| CVE-2023-53907 | 1 Bludit | 1 Bludit | 2025-12-31 | N/A | 6.5 MEDIUM |
|
Bludit versions before 3.13.1 contain an authenticated file download vulnerability in the Backup Plugin that allows logged-in users to access arbitrary files. Attackers can exploit the plugin's download functionality by manipulating file path parameters to read sensitive system files through directory traversal.
|
|||||
| CVE-2025-32950 | 1 Haulmont | 1 Jmix Framework | 2025-12-31 | N/A | 6.5 MEDIUM |
|
Jmix is a set of libraries and tools to speed up Spring Boot data-centric application development. In versions 1.0.0 to 1.6.1 and 2.0.0 to 2.3.4, attackers could manipulate the FileRef parameter to access files on the system where the Jmix application is deployed, provided the application server has the necessary permissions. This can be accomplished either by modifying the FileRef directly in the database or by supplying a harmful value in the fileRef parameter of the `/files` endpoint of the g ...
Show More |
|||||
| CVE-2025-24963 | 1 Vitest.dev | 1 Vitest | 2025-12-31 | N/A | 5.9 MEDIUM |
|
Vitest is a testing framework powered by Vite. The `__screenshot-error` handler on the browser mode HTTP server that responds any file on the file system. Especially if the server is exposed on the network by `browser.api.host: true`, an attacker can send a request to that handler from remote to get the content of arbitrary files.This `__screenshot-error` handler on the browser mode HTTP server responds any file on the file system. This code was added by commit `2d62051`. Users explicitly exposi ...
Show More |
|||||
| CVE-2025-24786 | 1 Clidey | 1 Whodb | 2025-12-31 | N/A | 10.0 CRITICAL |
|
WhoDB is an open source database management tool. While the application only displays Sqlite3 databases present in the directory `/db`, there is no path traversal prevention in place. This allows an unauthenticated attacker to open any Sqlite3 database present on the host machine that the application is running on. Affected versions of WhoDB allow users to connect to Sqlite3 databases. By default, the databases must be present in `/db/` (or alternatively `./tmp/` if development mode is enabled). ...
Show More |
|||||
| CVE-2025-63408 | 1 Ispyconnect | 1 Agent Dvr | 2025-12-31 | N/A | 7.8 HIGH |
|
Local Agent DVR versions thru 6.6.1.0 are vulnerable to directory traversal that allows an unauthenticated local attacker to gain access to sensitive information, cause a server-side forgery request (SSRF), or execute OS commands.
|
|||||
| CVE-2023-52623 | 2 Debian, Linux | 2 Debian Linux, Linux Kernel | 2025-12-31 | N/A | 5.5 MEDIUM |
|
In the Linux kernel, the following vulnerability has been resolved:
SUNRPC: Fix a suspicious RCU usage warning
I received the following warning while running cthon against an ontap
server running pNFS:
[ 57.202521] =============================
[ 57.202522] WARNING: suspicious RCU usage
[ 57.202523] 6.7.0-rc3-g2cc14f52aeb7 #41492 Not tainted
[ 57.202525] -----------------------------
[ 57.202525] net/sunrpc/xprtmultipath.c:349 RCU-list traversed in non-reader section!!
[ 57.202527 ...
Show More |
|||||
| CVE-2025-63414 | 1 Allskyteam | 1 Allsky | 2025-12-31 | N/A | 10.0 CRITICAL |
|
A Path Traversal vulnerability in the Allsky WebUI version v2024.12.06_06 allows an unauthenticated remote attacker to achieve arbitrary command execution. By sending a crafted HTTP request to the /html/execute.php endpoint with a malicious payload in the id parameter, an attacker can execute arbitrary commands on the underlying operating system, leading to full remote code execution (RCE).
|
|||||
| CVE-2024-58312 | 1 Xbtitfm | 1 Xbtitfm | 2025-12-30 | N/A | 7.5 HIGH |
|
xbtitFM 4.1.18 contains a path traversal vulnerability that allows unauthenticated attackers to access sensitive system files by manipulating URL parameters. Attackers can exploit directory traversal techniques to read critical system files like using encoded path traversal characters in HTTP requests.
|
|||||
| CVE-2023-40264 | 1 Unify | 1 Openscape Voice Trace Manager | 2025-12-30 | N/A | 4.3 MEDIUM |
|
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated path traversal in the user interface.
|
|||||
| CVE-2025-61923 | 1 Prestashop | 1 Prestashop Checkout | 2025-12-29 | N/A | 4.1 MEDIUM |
|
PrestaShop Checkout is the PrestaShop official payment module in partnership with PayPal. In versions prior to 4.4.1 and 5.0.5, the backoffice is missing validation on input resulting in a directory traversal and arbitrary file disclosure. The vulnerability is fixed in versions 4.4.1 and 5.0.5. No known workarounds exist.
|
|||||
| CVE-2025-13699 | 2025-12-29 | N/A | 7.0 HIGH | ||
|
MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation.
The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in fil ...
Show More |
|||||
| CVE-2025-13698 | 2025-12-29 | N/A | 4.5 MEDIUM | ||
|
Deciso OPNsense diag_backup.php filename Directory Traversal Arbitrary File Creation Vulnerability. This vulnerability allows network-adjacent attackers to create arbitrary files on affected installations of Deciso OPNsense. Authentication is required to exploit this vulnerability.
The specific flaw exists within the handling of backup configuration files. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage ...
Show More |
|||||
| CVE-2019-25246 | 2025-12-29 | N/A | 8.8 HIGH | ||
|
Beward N100 H.264 VGA IP Camera M2.1.6 contains an authenticated file disclosure vulnerability that allows attackers to read arbitrary system files via the 'READ.filePath' parameter. Attackers can exploit the fileread script or SendCGICMD API to access sensitive files like /etc/passwd and /etc/issue by supplying absolute file paths.
|
|||||
| CVE-2019-25256 | 2025-12-29 | N/A | 6.5 MEDIUM | ||
|
VideoFlow Digital Video Protection DVP 2.10 contains an authenticated directory traversal vulnerability that allows attackers to access arbitrary system files through unvalidated 'ID' parameters. Attackers can exploit multiple Perl scripts like downloadsys.pl to read sensitive files by manipulating directory path traversal in download requests.
|
|||||
| CVE-2025-15066 | 2025-12-29 | N/A | 6.2 MEDIUM | ||
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Missing Authorization vulnerability in Innorix WP allows Path Traversal.This issue affects Innorix WP from All versions If the "exam" directory exists under the directory where the product is installed (ex: innorix/exam)
|
|||||
| CVE-2025-14965 | 2025-12-27 | 5.2 MEDIUM | 5.5 MEDIUM | ||
|
A vulnerability was found in 1541492390c yougou-mall up to 0a771fa817c924efe52c8fe0a9a6658eee675f9f. This impacts the function upload/delete of the file src/main/java/per/ccm/ygmall/extra/controller/ResourceController.java. Performing manipulation results in path traversal. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.
|
|||||