Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-59

CWE-59

Medium likelihood

Improper Link Resolution Before File Access ('Link Following')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

1,527 vulnerabilities with CWE-59

ViArt Shop 3.5 - Unauthenticated Sensitive Information Exposure via Cart Save Action

ViArt Shop 3.5 - Information Disclosure via POST_DATA Parameter

Red Hat Cluster Project 2.x - Arbitrary File Write via Symlink Attack in /tmp

SNG 1.0.2 - Arbitrary File Overwrite via Symlink Attack on Temporary Files

sgml2x 1.0.0 - Arbitrary File Overwrite via Symlink Attack on Temporary Files

IBM WebSphere Application Server Open Redirect via ibm_security_logout Servlet

Enomaly Elastic Computing Platform < 2.1.1 - Arbitrary File Overwrite via Symlink Attack on Temporary File

Nokia 6131 NFC - URI Spoofing via Crafted NDEF Tag

Sun SNMP Management Agent - Privilege Escalation

pdfjam - Arbitrary File Overwrite via Symlink Attack

AIST NetCat <= 3.12 - Open Redirect via Logoff or Link Manager

Verlihub <0.9.8d-RC2 - Local File Overwrite

gpsdrive <2.10~pre4 - Local Privilege Escalation

gpsdrive 2.10~pre4 - Local File Overwrite

Debian GNU/Linux - Local Privilege Escalation

gpsdrive 2.09 - Local Privilege Escalation

netdisco-mibs-installer 1.0 - Local File Overwrite

arb 0.0.20071207.1 - Local Privilege Escalation

CUPS 1.3.8 - Arbitrary File Overwrite via Symlink Attack on Temporary File

crip 3.7 - Arbitrary File Overwrite via Symlink Attack on Temporary File

cmus <2.2.0 - Local Privilege Escalation

bash-doc <3.2 - Local File Overwrite

mtx-changer.Adic-Scalar-24 - Local Privilege Escalation

sdm-terminal 0.4.0b - Local Privilege Escalation

Screenie <1.30.0 - Local Privilege Escalation

Previous Page 52 of 62 Next

Details

Vulnerabilities 1,527

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy