Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-15 | CVE-2022-20723 | Path Traversal vulnerability in Cisco IOS XE Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install applications without being authenticated, or conduct a cross-site scripting (XSS) attack against a user of the affected software. | 7.2 |
| 2022-04-15 | CVE-2022-20727 | Path Traversal vulnerability in Cisco products Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install applications without being authenticated, or conduct a cross-site scripting (XSS) attack against a user of the affected software. | 6.7 |
| 2022-04-15 | CVE-2022-27043 | Path Traversal vulnerability in Yearning 2.3.1/2.3.2 Yearning versions 2.3.1 and 2.3.2 Interstellar GA and 2.3.4 - 2.3.6 Neptune is vulnerable to Directory Traversal. | 7.5 |
| 2022-04-14 | CVE-2020-25150 | Path Traversal vulnerability in Bbraun Datamodule Compactplus and Spacecom A relative path traversal attack in the B. | 8.8 |
| 2022-04-14 | CVE-2021-43289 | Path Traversal vulnerability in Thoughtworks Gocd An issue was discovered in ThoughtWorks GoCD before 21.3.0. | 7.5 |
| 2022-04-14 | CVE-2021-43290 | Path Traversal vulnerability in Thoughtworks Gocd An issue was discovered in ThoughtWorks GoCD before 21.3.0. | 9.8 |
| 2022-04-13 | CVE-2022-24843 | Path Traversal vulnerability in Gin-Vue-Admin Project Gin-Vue-Admin Gin-vue-admin is a backstage management system based on vue and gin, which separates the front and rear of the full stack. | 7.5 |
| 2022-04-13 | CVE-2022-28052 | Path Traversal vulnerability in Roothub 2.6.0 Directory Traversal vulnerability in file cn/roothub/store/FileSystemStorageService in function store in Roothub 2.6.0 allows remote attackers with low privlege to arbitrarily upload files via /common/upload API, which could lead to remote arbitrary code execution. | 8.0 |
| 2022-04-13 | CVE-2021-43741 | Path Traversal vulnerability in Cmsimple 5.4 CMSimple 5.4 is vulnerable to Directory Traversal. | 9.8 |
| 2022-04-13 | CVE-2022-22279 | Path Traversal vulnerability in Sonicwall products A post-authentication arbitrary file read vulnerability impacting end-of-life Secure Remote Access (SRA) products and older firmware versions of Secure Mobile Access (SMA) 100 series products, specifically the SRA appliances running all 8.x, 9.0.0.5-19sv and earlier versions and Secure Mobile Access (SMA) 100 series products running older firmware 9.0.0.9-26sv and earlier versions | 4.9 |