Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE CVE VULNERABILITY TITLE RISK
2023-01-09 CVE-2022-36928 Path Traversal vulnerability in Zoom
Zoom for Android clients before version 5.13.0 contain a path traversal vulnerability.
local
low complexity
zoom CWE-22
7.1
2023-01-09 CVE-2022-4884 Path Traversal vulnerability in Checkmk 2.0.0/2.1.0
Path-Traversal in MKP storing in Tribe29 Checkmk <=2.0.0p32 and <= 2.1.0p18 allows an administrator to write mkp files to arbitrary locations via a malicious mkp file.
network
low complexity
checkmk CWE-22
4.9
2023-01-08 CVE-2014-125069 Path Traversal vulnerability in Maps-Js-Icoads Project Maps-Js-Icoads
A vulnerability was found in saxman maps-js-icoads.
network
low complexity
maps-js-icoads-project CWE-22
5.3
2023-01-08 CVE-2015-10030 Path Traversal vulnerability in Surpass Project Surpass
A vulnerability has been found in SUKOHI Surpass and classified as critical.
network
low complexity
surpass-project CWE-22
5.3
2023-01-08 CVE-2020-36647 Path Traversal vulnerability in Yunohost Transmission YNH
A vulnerability classified as critical has been found in YunoHost-Apps transmission_ynh.
network
low complexity
yunohost CWE-22
5.3
2023-01-07 CVE-2022-4880 Path Traversal vulnerability in Openutau
A vulnerability was found in stakira OpenUtau.
network
low complexity
openutau CWE-22
critical
9.8
2023-01-06 CVE-2019-25099 Path Traversal vulnerability in Afkmods Qsf-Portal
A vulnerability classified as critical was found in Arthmoor QSF-Portal.
network
low complexity
afkmods CWE-22
5.3
2023-01-05 CVE-2019-25098 Path Traversal vulnerability in Extplorer
A vulnerability was found in soerennb eXtplorer up to 2.1.12.
network
low complexity
extplorer CWE-22
critical
9.8
2023-01-05 CVE-2022-37934 Path Traversal vulnerability in multiple products
A potential security vulnerability has been identified in HPE OfficeConnect 1820, and 1850 switch series.
network
low complexity
hp hpe CWE-22
7.5
2023-01-03 CVE-2022-38723 Path Traversal vulnerability in Gravitee API Management
Gravitee API Management before 3.15.13 allows path traversal through HTML injection.
network
low complexity
gravitee CWE-22
8.6