Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-06 | CVE-2022-24878 | Path Traversal vulnerability in Fluxcd Flux2 Flux is an open and extensible continuous delivery solution for Kubernetes. | 6.5 |
| 2022-05-06 | CVE-2022-24877 | Path Traversal vulnerability in Fluxcd Flux2 Flux is an open and extensible continuous delivery solution for Kubernetes. | 8.8 |
| 2022-05-05 | CVE-2021-38693 | Path Traversal vulnerability in Qnap QTS and Qutscloud A path traversal vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, QTS, QVR Pro Appliance. | 5.3 |
| 2022-05-05 | CVE-2021-42183 | Path Traversal vulnerability in Masacms 7.2.1 MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/_api/asset/image/. | 7.5 |
| 2022-05-05 | CVE-2021-45783 | Path Traversal vulnerability in Bookeen Notea Firmware Bkr1.0.520210608 Bookeen Notea Firmware BK_R_1.0.5_20210608 is affected by a directory traversal vulnerability that allows an attacker to obtain sensitive information. | 4.6 |
| 2022-05-03 | CVE-2022-20101 | Path Traversal vulnerability in Google Android 11.0/12.0 In aee daemon, there is a possible information disclosure due to a path traversal. | 5.5 |
| 2022-05-03 | CVE-2022-28784 | Path Traversal vulnerability in Google Android 10.0/11.0/12.0 Path traversal vulnerability in Galaxy Themes prior to SMR May-2022 Release 1 allows attackers to list file names in arbitrary directory as system user. | 3.3 |
| 2022-05-03 | CVE-2022-1554 | Path Traversal vulnerability in Clinical-Genomics Scout Path Traversal due to `send_file` call in GitHub repository clinical-genomics/scout prior to 4.52. | 7.5 |
| 2022-05-02 | CVE-2022-24897 | Path Traversal vulnerability in Xwiki APIs to evaluate content with Velocity is a package for APIs to evaluate content with Velocity. | 7.5 |
| 2022-05-02 | CVE-2022-29970 | Path Traversal vulnerability in multiple products Sinatra before 2.2.0 does not validate that the expanded path matches public_dir when serving static files. | 7.5 |