Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-28 | CVE-2022-29081 | Path Traversal vulnerability in Zohocorp products Zoho ManageEngine Access Manager Plus before 4302, Password Manager Pro before 12007, and PAM360 before 5401 are vulnerable to access-control bypass on a few Rest API URLs (for SSOutAction. | 9.8 |
| 2022-04-27 | CVE-2021-46420 | Path Traversal vulnerability in Franklinfueling Ts-550 EVO Firmware 2.23.4.8936 Franklin Fueling Systems FFS TS-550 evo 2.23.4.8936 is affected by an unauthenticated directory traversal vulnerability, which allows an attacker to obtain sensitive information. | 7.5 |
| 2022-04-27 | CVE-2021-46421 | Path Traversal vulnerability in Franklinfueling Ts-550 EVO Firmware 1.8.7.7299 Franklin Fueling Systems FFS T5 Series 1.8.7.7299 is affected by an unauthenticated directory traversal vulnerability, which allows an attacker to obtain sensitive information. | 7.5 |
| 2022-04-26 | CVE-2022-28058 | Path Traversal vulnerability in Verydows 2.0 Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\file_controller.php. | 8.1 |
| 2022-04-26 | CVE-2022-28059 | Path Traversal vulnerability in Verydows 2.0 Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\database_controller.php. | 8.1 |
| 2022-04-26 | CVE-2022-28523 | Path Traversal vulnerability in Hongcms Project Hongcms 3.0.0 HongCMS 3.0.0 allows arbitrary file deletion via the component /admin/index.php/template/ajax?action=delete. | 8.1 |
| 2022-04-26 | CVE-2022-28527 | Path Traversal vulnerability in Dhcms Project Dhcms 20170919 dhcms v20170919 was discovered to contain an arbitrary folder deletion vulnerability via /admin.php?r=admin/AdminBackup/del. | 8.1 |
| 2022-04-26 | CVE-2021-26629 | Path Traversal vulnerability in Tobesoft Xplatform A path traversal vulnerability in XPLATFORM's runtime archive function could lead to arbitrary file creation. | 8.8 |
| 2022-04-26 | CVE-2022-29806 | Path Traversal vulnerability in Zoneminder ZoneMinder before 1.36.13 allows remote code execution via an invalid language. | 9.8 |
| 2022-04-25 | CVE-2021-35250 | Path Traversal vulnerability in Solarwinds Serv-U 15.3 A researcher reported a Directory Transversal Vulnerability in Serv-U 15.3. | 7.5 |