Skip to main content
CVE-2015-7603 HIGH POC THREAT Act Now

Directory traversal vulnerability in Konica Minolta FTP Utility 1.0 allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in a RETR command. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 72.8%.

Path Traversal Ftp Utility
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
72.8%
Threat
5.2
CVE-2015-7602 HIGH POC THREAT Act Now

Directory traversal vulnerability in BisonWare BisonFTP 3.5 allows remote attackers to read arbitrary files via a ../ (dot dot slash) in a RETR command. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 52.6%.

Path Traversal Bisonftp
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
52.6%
Threat
4.6
CVE-2015-7601 HIGH POC THREAT Act Now

Directory traversal vulnerability in PCMan's FTP Server 2.0.7 allows remote attackers to read arbitrary files via a ..// (dot dot double slash) in a RETR command. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 52.6%.

Path Traversal Pcman S Ftp Server
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
52.6%
Threat
4.6
CVE-2015-5074 HIGH POC PATCH THREAT Act Now

Incomplete blacklist vulnerability in the FileUploadsFilter class in protected/components/filters/FileUploadsFilter.php in X2Engine X2CRM before 5.0.9 allows remote authenticated users to execute. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 11.2%.

RCE PHP X2Crm
NVD Exploit-DB GitHub
CVSS 2.0
7.5
EPSS
11.2%
CVE-2015-7319 HIGH PATCH This Week

SQL injection vulnerability in cpabc_appointments_admin_int_calendar_list.inc.php in the Appointment Booking Calendar plugin before 1.1.8 for WordPress allows remote attackers to execute arbitrary. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

WordPress SQLi PHP Appointment Booking Calendar
NVD
CVSS 2.0
7.5
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy