Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-25 | CVE-2022-27906 | Path Traversal vulnerability in Mendelson Oftp2 Mendelson OFTP2 before 1.1 b43 is affected by directory traversal. | 5.9 |
| 2022-03-23 | CVE-2022-25266 | Path Traversal vulnerability in Passwork Passwork On-Premise Edition before 4.6.13 allows migration/downloadExportFile Directory Traversal (to read files). | 4.3 |
| 2022-03-23 | CVE-2022-25267 | Path Traversal vulnerability in Passwork Passwork On-Premise Edition before 4.6.13 allows migration/uploadExportFile Directory Traversal (to upload files). | 8.8 |
| 2022-03-23 | CVE-2021-27471 | Path Traversal vulnerability in Rockwellautomation Connected Components Workbench 12.00.00 The parsing mechanism that processes certain file types does not provide input sanitization for file paths. | 8.6 |
| 2022-03-23 | CVE-2021-27473 | Path Traversal vulnerability in Rockwellautomation Connected Components Workbench 12.00.00 Rockwell Automation Connected Components Workbench v12.00.00 and prior does not sanitize paths specified within the .ccwarc archive file during extraction. | 8.2 |
| 2022-03-22 | CVE-2022-24774 | Path Traversal vulnerability in Cyclonedx Bill of Materials Repository Server CycloneDX BOM Repository Server is a bill of materials (BOM) repository server for distributing CycloneDX BOMs. | 8.1 |
| 2022-03-21 | CVE-2022-23347 | Path Traversal vulnerability in Bigantsoft Bigant Server 5.6.06 BigAnt Software BigAnt Server v5.6.06 was discovered to be vulnerable to directory traversal attacks. | 7.5 |
| 2022-03-21 | CVE-2022-26960 | Path Traversal vulnerability in Std42 Elfinder connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. | 9.1 |
| 2022-03-18 | CVE-2020-25176 | Path Traversal vulnerability in multiple products Some commands used by the Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x eXchange Layer (IXL) protocol perform various file operations in the file system. | 9.8 |
| 2022-03-18 | CVE-2021-45967 | Path Traversal vulnerability in multiple products An issue was discovered in Pascom Cloud Phone System before 7.20.x. | 9.8 |