Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-04 | CVE-2023-29962 | Path Traversal vulnerability in S-Cms 5.0 S-CMS v5.0 was discovered to contain an arbitrary file read vulnerability. | 6.5 |
2024-01-04 | CVE-2024-20804 | Path Traversal vulnerability in Samsung Android 11.0/12.0 Path traversal vulnerability in FileUriConverter of MyFiles prior to SMR Jan-2024 Release 1 in Android 11 and Android 12, and version 14.5.00.21 in Android 13 allows local attackers to write arbitrary file. | 5.5 |
2024-01-04 | CVE-2024-20805 | Path Traversal vulnerability in Samsung Android 11.0/12.0 Path traversal vulnerability in ZipCompressor of MyFiles prior to SMR Jan-2024 Release 1 in Android 11 and Android 12, and version 14.5.00.21 in Android 13 allows local attackers to write arbitrary file. | 5.5 |
2024-01-03 | CVE-2024-21633 | Path Traversal vulnerability in Apktool Apktool is a tool for reverse engineering Android APK files. | 7.8 |
2024-01-03 | CVE-2023-37607 | Path Traversal vulnerability in Automaticsystems SOC Fl9600 Firstlane Firmware 06 Directory Traversal in Automatic-Systems SOC FL9600 FastLine lego_T04E00 allows a remote attacker to obtain sensitive information. | 7.5 |
2024-01-03 | CVE-2023-47473 | Path Traversal vulnerability in Fuwushe Ifair 23.8Ad0 Directory Traversal vulnerability in fuwushe.org iFair versions 23.8_ad0 and before allows an attacker to obtain sensitive information via a crafted script. | 7.5 |
2024-01-03 | CVE-2023-45722 | Path Traversal vulnerability in Hcltech Dryice Myxalytics 5.9/6.0/6.1 HCL DRYiCE MyXalytics is impacted by path traversal arbitrary file read vulnerability because it uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory. | 9.8 |
2024-01-03 | CVE-2023-45723 | Path Traversal vulnerability in Hcltech Dryice Myxalytics 5.9/6.0/6.1 HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. | 9.8 |
2023-12-29 | CVE-2023-7114 | Path Traversal vulnerability in Mattermost Mattermost version 2.10.0 and earlier fails to sanitize deeplink paths, which allows an attacker to perform CSRF attacks against the server. | 8.8 |
2023-12-29 | CVE-2023-52085 | Path Traversal vulnerability in Wintercms Winter Winter is a free, open-source content management system. | 5.4 |