Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-09 | CVE-2024-8585 | Path Traversal vulnerability in Learningdigital Orca HCM Orca HCM from LEARNING DIGITA does not properly restrict a specific parameter of the file download functionality, allowing a remote attacker with regular privileges to download arbitrary system files. | 6.5 |
| 2024-09-07 | CVE-2024-8538 | Path Traversal vulnerability in Infiniteuploads BIG File Uploads The Big File Uploads – Increase Maximum File Upload Size plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.1.2. | 4.3 |
| 2024-09-06 | CVE-2023-51366 | Path Traversal vulnerability in Qnap QTS and Quts Hero A path traversal vulnerability has been reported to affect several QNAP operating system versions. | 6.5 |
| 2024-09-06 | CVE-2024-21904 | Path Traversal vulnerability in Qnap QTS and Quts Hero A path traversal vulnerability has been reported to affect several QNAP operating system versions. | 6.5 |
| 2024-09-06 | CVE-2024-6445 | Path Traversal vulnerability in Dataflowx Datadiodex Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in DataFlowX Technology DataDiodeX allows Path Traversal.This issue affects DataDiodeX: from v3.0.0 before v3.1.7. | 7.5 |
| 2024-09-05 | CVE-2024-45401 | Path Traversal vulnerability in Stripe Stripe-Cli stripe-cli is a command-line tool for the payment processor Stripe. | 7.1 |
| 2024-09-04 | CVE-2024-45074 | Path Traversal vulnerability in IBM Webmethods Integration 10.15 IBM webMethods Integration 10.15 could allow an authenticated user to traverse directories on the system. | 6.5 |
| 2024-09-04 | CVE-2024-8409 | Path Traversal vulnerability in Abcd-Community Abcd 2.2.0 A vulnerability classified as problematic has been found in ABCD ABCD2 up to 2.2.0-beta-1. | 7.5 |
| 2024-09-04 | CVE-2024-8410 | Path Traversal vulnerability in Abcd-Community Abcd 2.2.0 A vulnerability classified as problematic was found in ABCD ABCD2 up to 2.2.0-beta-1. | 7.5 |
| 2024-09-04 | CVE-2024-8104 | Path Traversal vulnerability in Wpextended WP Extended The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.0.8 via the download_file_ajax function. | 6.5 |