Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-11 | CVE-2021-37196 | Path Traversal vulnerability in Siemens Comos A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.3 (All versions >= V10.3.3.3 only if web components are used), COMOS V10.4 (All versions < V10.4.1 only if web components are used). | 6.5 |
| 2022-01-10 | CVE-2021-44586 | Path Traversal vulnerability in Dst-Admin Project Dst-Admin 1.3.0 An issue was discovered in dst-admin v1.3.0. | 7.5 |
| 2022-01-10 | CVE-2022-22821 | Path Traversal vulnerability in Nvidia Nemo NVIDIA NeMo before 1.6.0 contains a vulnerability in ASR WebApp, in which ../ Path Traversal may lead to deletion of any directory when admin privileges are available. | 4.4 |
| 2022-01-10 | CVE-2022-22836 | Path Traversal vulnerability in Coreftp Core FTP 1.2/2.0 CoreFTP Server before 727 allows directory traversal (for file creation) by an authenticated attacker via ../ in an HTTP PUT request. | 6.5 |
| 2022-01-10 | CVE-2020-29050 | Path Traversal vulnerability in multiple products SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal (in conjunction with CVE-2019-14511) because the mysql client can be used for CALL SNIPPETS and load_file operations on a full pathname (e.g., a file in the /etc directory). | 7.5 |
| 2022-01-10 | CVE-2021-40001 | Path Traversal vulnerability in Huawei Harmonyos The CaasKit module has a path traversal vulnerability. | 5.3 |
| 2022-01-10 | CVE-2021-40003 | Path Traversal vulnerability in Huawei Harmonyos HwPCAssistant has a path traversal vulnerability. | 5.3 |
| 2022-01-06 | CVE-2021-44351 | Path Traversal vulnerability in Naviwebs Navigate CMS 2.9 An arbitrary file read vulnerability exists in NavigateCMS 2.9 via /navigate/navigate_download.php id parameter. | 7.5 |
| 2022-01-05 | CVE-2021-45452 | Path Traversal vulnerability in multiple products Storage.save in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1 allows directory traversal if crafted filenames are directly passed to it. | 5.3 |
| 2022-01-04 | CVE-2021-39143 | Path Traversal vulnerability in Linuxfoundation Spinnaker Spinnaker is an open source, multi-cloud continuous delivery platform. | 7.1 |