CWE-22

High likelihood

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

9,303 vulnerabilities with CWE-22
CVE-2005-0372
GTK+ < 2.0.18 - Path Traversal via Malicious FTP Server LIST Response
CVE-2004-1444
Roundup < 0.6.4 - Path Traversal via @@ Command in HTTP GET Request
CVE-2004-2686
Solaris 2.6, 7, 8, 9 - Local Path Traversal via VFS System Calls
CVE-2004-2717
PHPMyChat 0.14.5 - Authenticated Path Traversal via Sheet or What Parameter
CVE-2004-2745
Anteco Visual Technologies OwnServer < 1.0 - Path Traversal via URL
CVE-2004-2747
Quick 'n Easy FTP Server 1.77 - Authenticated Path Traversal via DEL Command
CVE-2004-2749
2Wire HomePortal - Path Traversal via Return Parameter
CVE-2004-2750
JBrowser 1.0-2.1 - Path Traversal via Directory Parameter
CVE-2004-0273
RealOne Player and RealOne Enterprise Desktop - Path Traversal via RMP Skin File
CVE-2004-0847 CRITICAL
ASP.NET - Path Traversal via Backslash Character
CVSS 9.8
CVE-2004-0175
OpenSSH < 3.4p1 - Unauthenticated Arbitrary File Write via SCP Directory Traversal
CVE-2004-1364
Oracle Application Server - Directory Traversal via extproc
CVE-2004-1354
Solaris 8-9 - Information Disclosure via Solaris Management Console Path Traversal
CVE-2004-1991
aldo's_web_server 1.5 - Path Traversal via HTTP GET Request
CVE-2004-1927
TikiWiki CMS/Groupware < 1.8.1 - Path Traversal via Mapfile Parameter
CVE-2003-0593
Opera Browser - Cookie Access Restriction Bypass via URL-Encoded Path Traversal
CVE-2003-1335
simple_and_nice_index_file < 1.2.4 - Path Traversal
CVE-2003-1345
WebCollection Plus 5.00 - Path Traversal via d Parameter
CVE-2003-1349
NiteServer FTPD 1.83 - Path Traversal via CD Command
CVE-2003-1351
EditTag 1.1 - Path Traversal via File Parameter
CVE-2003-1373
phpBB 1.4.0-1.4.4 - Path Traversal via Null-Byte Terminated Dot-Dot Sequences
CVE-2003-1380
BisonFTP Server 4 release 2 - Path Traversal via ls and mget Commands
CVE-2003-1413
Darwin Streaming Server 4.1.1 - Path Traversal via parse_xml.cgi Filename Parameter
CVE-2003-1414
Darwin Streaming Server 4.1.2 and QuickTime Streaming Server 4.1.1 - Path Traversal via Filename Parameter
CVE-2003-1427
Netgear FM114P 1.4 - Path Traversal via Hex-Encoded Port Parameter
Details
Vulnerabilities 9,303
Exploit Likelihood High