• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-22

CVE-2020-24136

February 26, 2023 by

Directory traversal in Wcms 0.3.2 allows an attacker to read arbitrary files on the server that is running an application via the pagename parameter to wex/html.php.

CVE-2020-24137

February 26, 2023 by

Directory traversal vulnerability in Wcms 0.3.2 allows an attacker to read arbitrary files on the server that is running an application via the path parameter to wex/cssjs.php.

CVE-2020-24143

February 26, 2023 by

Directory traversal in the Video Downloader for TikTok (aka downloader-tiktok) plugin 1.3 for WordPress lets an attacker get access to files that are stored outside the web root folder via the njt-tk-download-video parameter.

CVE-2020-24144

February 26, 2023 by

Directory traversal in the Media File Organizer (aka media-file-organizer) plugin 1.0.1 for WordPress lets an attacker get access to files that are stored outside the web root folder via the items[] parameter in a move operation.

CVE-2020-23766

February 26, 2023 by

An arbitrary file deletion vulnerability was discovered on htmly v2.7.5 which allows remote attackers to use any absolute path to delete any file in the server should they gain Administrator privileges.

CVE-2020-23715

February 26, 2023 by

Directory Traversal vulnerability in Webport CMS 1.19.10.17121 via the file parameter to file/download.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 220
  • Go to page 221
  • Go to page 222
  • Go to page 223
  • Go to page 224
  • Interim pages omitted …
  • Go to page 514
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE