Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-08 | CVE-2024-47563 | Path Traversal vulnerability in Siemens Sinec Security Monitor A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0). | 5.3 |
| 2024-10-07 | CVE-2024-47556 | Path Traversal vulnerability in Xerox Freeflow Core Pre-Auth RCE via Path Traversal | 9.8 |
| 2024-10-07 | CVE-2024-47557 | Path Traversal vulnerability in Xerox Freeflow Core Pre-Auth RCE via Path Traversal | 9.8 |
| 2024-10-07 | CVE-2024-47558 | Path Traversal vulnerability in Xerox Freeflow Core 7.0 Authenticated RCE via Path Traversal | 8.8 |
| 2024-10-07 | CVE-2024-47559 | Path Traversal vulnerability in Xerox Freeflow Core 7.0 Authenticated RCE via Path Traversal | 8.8 |
| 2024-10-07 | CVE-2024-46446 | Path Traversal vulnerability in Mecha-Cms Mecha 3.0.0 Mecha CMS 3.0.0 is vulnerable to Directory Traversal. | 9.8 |
| 2024-10-05 | CVE-2024-47841 | Path Traversal vulnerability in Wikimedia Wikimedia-Extensions-Css Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in The Wikimedia Foundation Mediawiki - CSS Extension allows Path Traversal.This issue affects Mediawiki - CSS Extension: from 1.42.X before 1.42.2, from 1.41.X before 1.41.3, from 1.39.X before 1.39.9. | 7.5 |
| 2024-10-03 | CVE-2024-8352 | Path Traversal vulnerability in Hypestudio Social web Suite The Social Web Suite – Social Media Auto Post, Social Media Auto Publish plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 4.1.11 via the download_log function. | 7.5 |
| 2024-10-02 | CVE-2024-46977 | Path Traversal vulnerability in Openc3 Cosmos OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. | 6.5 |
| 2024-10-02 | CVE-2024-20449 | Path Traversal vulnerability in Cisco Nexus Dashboard Fabric Controller A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated, remote attacker with low privileges to execute arbitrary code on an affected device. This vulnerability is due to improper path validation. | 8.8 |