VYPR

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

BaseStableLikelihood: High

Description

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-126 · CAPEC-64 · CAPEC-76 · CAPEC-78 · CAPEC-79

CVEs mapped to this weakness (5,488)

page 64 of 275
  • CVE-2018-11051HigJul 3, 2018
    risk 0.49cvss 7.5epss 0.03

    RSA Certificate Manager Versions 6.9 build 560 through 6.9 build 564 contain a path traversal vulnerability in the RSA CMP Enroll Server and the RSA REST Enroll Server. A remote unauthenticated attacker could potentially exploit this vulnerability by manipulating input…

  • CVE-2018-12631HigJun 21, 2018
    risk 0.49cvss 7.5epss 0.03

    Redatam7 (formerly Redatam WebServer) allows remote attackers to read arbitrary files via /redbin/rpwebutilities.exe/text?LFN=../ directory traversal.

  • CVE-2018-8727HigJun 19, 2018
    risk 0.49cvss 7.5epss 0.08

    Path Traversal in Gateway in Mirasys DVMS Workstation 5.12.6 and earlier allows an attacker to traverse the file system to access files or directories via the Web Client webserver.

  • CVE-2017-17309HigJun 14, 2018
    risk 0.49cvss 7.5epss 0.07

    Huawei HG255s-10 V100R001C163B025SP02 has a path traversal vulnerability due to insufficient validation of the received HTTP requests, a remote attacker may access the local files on the device without authentication.

  • CVE-2018-0496HigJun 12, 2018
    risk 0.49cvss 7.5epss 0.02

    Directory traversal issues in the D-Mod extractor in DFArc and DFArc2 (as well as in RTsoft's Dink Smallwood HD / ProtonSDK version) before 3.14 allow an attacker to overwrite arbitrary files on the user's system.

  • CVE-2017-5381HigJun 11, 2018
    risk 0.49cvss 7.5epss 0.01

    The "export" function in the Certificate Viewer can force local filesystem navigation when the "common name" in a certificate contains slashes, allowing certificate content to be saved in unsafe locations with an arbitrary filename. This vulnerability affects Firefox < 51.

  • CVE-2018-12042HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    Roxy Fileman through v1.4.5 has Directory traversal via the php/download.php f parameter.

  • CVE-2018-3730HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    mcstatic node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to read content of any file with known path.

  • CVE-2018-3727HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    626 node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.

  • CVE-2018-3725HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    hekto node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.

  • CVE-2018-3724HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    general-file-server node module suffers from a Path Traversal vulnerability due to lack of validation of currpath, which allows a malicious user to read content of any file with known path.

  • CVE-2017-16223HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    nodeaaaaa is a static file server. nodeaaaaa is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

  • CVE-2017-16221HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    yzt is a simple file server. yzt is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

  • CVE-2017-16220HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    wind-mvc is an mvc framework. wind-mvc is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

  • CVE-2017-16219HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    yttivy is a static file server. yttivy is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

  • CVE-2017-16218HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    dgard8.lab6 is a static file server. dgard8.lab6 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

  • CVE-2017-16217HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    fbr-client sends files through sockets via socket.io and webRTC. fbr-client is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

  • CVE-2017-16216HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    tencent-server is a simple web server. tencent-server is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

  • CVE-2017-16215HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    sgqserve is a simple file server. sgqserve is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

  • CVE-2017-16214HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.02

    peiserver is a static file server. peiserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.