Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-21 | CVE-2020-19858 | Path Traversal vulnerability in Plutinosoft Platinum Platinum Upnp SDK through 1.2.0 has a directory traversal vulnerability. | 7.5 |
| 2022-01-20 | CVE-2022-23119 | Path Traversal vulnerability in Trendmicro Deep Security Agent 20.0 A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to read arbitrary files from the file system. | 7.5 |
| 2022-01-20 | CVE-2021-44737 | Path Traversal vulnerability in Lexmark products PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal configuration files. | 8.8 |
| 2022-01-19 | CVE-2021-46203 | Path Traversal vulnerability in Taogogo Taocms 3.0.2 Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path parameter. | 6.5 |
| 2022-01-19 | CVE-2021-46104 | Path Traversal vulnerability in Webp Server GO 0.4.0 An issue was discovered in webp_server_go 0.4.0. | 7.5 |
| 2022-01-18 | CVE-2022-21693 | Path Traversal vulnerability in Onionshare OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. | 6.5 |
| 2022-01-14 | CVE-2022-22054 | Path Traversal vulnerability in Asus Rt-Ax56U Firmware 3.0.0.4.386.44266 ASUS RT-AX56U’s login function contains a path traversal vulnerability due to its inadequate filtering for special characters in URL parameters, which allows an unauthenticated local area network attacker to access restricted system paths and download arbitrary files. | 6.5 |
| 2022-01-13 | CVE-2022-21682 | Path Traversal vulnerability in multiple products Flatpak is a Linux application sandboxing and distribution framework. | 6.5 |
| 2022-01-13 | CVE-2021-23514 | Path Traversal vulnerability in Crowcpp Crow This affects the package Crow before 0.3+4. | 7.5 |
| 2022-01-12 | CVE-2022-23107 | Path Traversal vulnerability in Jenkins Warnings Next Generation Jenkins Warnings Next Generation Plugin 9.10.2 and earlier does not restrict the name of a file when configuring custom ID, allowing attackers with Item/Configure permission to write and read specific files with a hard-coded suffix on the Jenkins controller file system. | 8.1 |