Vulnerabilities > External Control of File Name or Path
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-03 | CVE-2024-22178 | A file write vulnerability exists in the OAS Engine Save Security Configuration functionality of Open Automation Software OAS Platform V19.00.0057. | 4.9 |
| 2024-03-15 | CVE-2023-47147 | External Control of File Name or Path vulnerability in IBM Sterling Secure Proxy 6.0.3/6.1.0 IBM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow an attacker to overwrite a log message under specific conditions. | 5.3 |
| 2024-01-07 | CVE-2024-0265 | External Control of File Name or Path vulnerability in Oretnom23 Clinic Queuing System 1.0 A vulnerability was found in SourceCodester Clinic Queuing System 1.0. | 8.8 |
| 2023-11-07 | CVE-2023-46851 | External Control of File Name or Path vulnerability in Apache Allura Allura Discussion and Allura Forum importing does not restrict URL values specified in attachments. | 4.9 |
| 2023-08-06 | CVE-2023-4191 | External Control of File Name or Path vulnerability in Resort Reservation System Project Resort Reservation System 1.0 A vulnerability, which was classified as critical, has been found in SourceCodester Resort Reservation System 1.0. | 9.8 |
| 2023-05-05 | CVE-2023-2554 | External Control of File Name or Path vulnerability in Bumsys Project Bumsys External Control of File Name or Path in GitHub repository unilogies/bumsys prior to 2.2.0. | 7.2 |
| 2023-03-01 | CVE-2023-1105 | External Control of File Name or Path vulnerability in Flatpress External Control of File Name or Path in GitHub repository flatpressblog/flatpress prior to 1.3. | 8.1 |
| 2023-02-27 | CVE-2023-1070 | External Control of File Name or Path vulnerability in Teampass External Control of File Name or Path in GitHub repository nilsteampassnet/teampass prior to 3.0.0.22. | 7.1 |
| 2023-01-07 | CVE-2014-125059 | External Control of File Name or Path vulnerability in Sternenblog Project Sternenblog A vulnerability, which was classified as problematic, has been found in sternenseemann sternenblog. | 9.8 |
| 2022-07-18 | CVE-2022-2400 | External Control of File Name or Path vulnerability in Dompdf Project Dompdf External Control of File Name or Path in GitHub repository dompdf/dompdf prior to 2.0.0. | 5.3 |