Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-12 | CVE-2022-24247 | Path Traversal vulnerability in Ritecms RiteCMS version 3.1.0 and below suffers from an arbitrary file overwrite via path traversal vulnerability in Admin Panel. | 6.5 |
| 2022-04-12 | CVE-2022-24248 | Path Traversal vulnerability in Ritecms RiteCMS version 3.1.0 and below suffers from an arbitrary file deletion via path traversal vulnerability in Admin Panel. | 6.5 |
| 2022-04-11 | CVE-2022-27844 | Path Traversal vulnerability in Wpvivid Migration, Backup, Staging Arbitrary File Read vulnerability in WPvivid Team Migration, Backup, Staging – WPvivid (WordPress plugin) versions <= 0.9.70 | 7.5 |
| 2022-04-11 | CVE-2022-28543 | Path Traversal vulnerability in Samsung Flow 4.8.03.5/4.8.5.0 Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4 allows local attackers to read arbitrary files as Samsung Flow permission. | 5.5 |
| 2022-04-11 | CVE-2022-28544 | Path Traversal vulnerability in Samsung Galaxy Store 4.5.32.4/4.5.36.4 Path traversal vulnerability in unzip method of InstallAgentCommonHelper in Galaxy store prior to version 4.5.40.5 allows attacker to access the file of Galaxy store. | 5.5 |
| 2022-04-11 | CVE-2021-37293 | Path Traversal vulnerability in Kevinlab 4ST L-Bems 1.0.0 A Directory Traversal vulnerability exists in KevinLAB Inc Building Energy Management System 4ST BEMS 1.0.0 via the page GET parameter in index.php. | 6.5 |
| 2022-04-10 | CVE-2022-27277 | Path Traversal vulnerability in Inhandnetworks Inrouter 900 Firmware InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file deletion vulnerability via the function sub_17C08. | 9.1 |
| 2022-04-10 | CVE-2022-27279 | Path Traversal vulnerability in Inhandnetworks Inrouter 900 Firmware InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file read via the function sub_177E0. | 7.5 |
| 2022-04-08 | CVE-2021-36288 | Path Traversal vulnerability in Dell EMC Unity Operating Environment Dell VNX2 for File version 8.1.21.266 and earlier, contain a path traversal vulnerability which may lead unauthenticated users to read/write restricted files | 9.1 |
| 2022-04-07 | CVE-2022-23970 | Path Traversal vulnerability in Asus Rt-Ax56U Firmware 3.0.0.4.386.45898 ASUS RT-AX56U’s update_json function has a path traversal vulnerability due to insufficient filtering for special characters in the URL parameter. | 8.1 |