Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-03 | CVE-2021-33800 | Path Traversal vulnerability in Alibaba Druid 1.2.3 In Druid 1.2.3, visiting the path with parameter in a certain function can lead to directory traversal. | 7.5 |
| 2021-11-02 | CVE-2021-43264 | Path Traversal vulnerability in Mahara In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, adjusting the path component for the page help file allows attackers to bypass the intended access control for HTML files via directory traversal. | 3.3 |
| 2021-11-02 | CVE-2020-18438 | Path Traversal vulnerability in PHPok 5.1 Directory traversal vulnerability in qinggan phpok 5.1, allows attackers to disclose sensitive information, via the title parameter to admin.php. | 7.5 |
| 2021-11-01 | CVE-2021-29212 | Path Traversal vulnerability in HP ILO Amplifier Pack A remote unauthenticated directory traversal security vulnerability has been identified in HPE iLO Amplifier Pack versions 1.80, 1.81, 1.90 and 1.95. | 9.8 |
| 2021-10-29 | CVE-2020-25872 | Path Traversal vulnerability in Frogcms Project Frogcms 0.9.5 A vulnerability exists within the FileManagerController.php function in FrogCMS 0.9.5 which allows an attacker to perform a directory traversal attack via a GET request urlencode parameter. | 4.9 |
| 2021-10-29 | CVE-2020-25873 | Path Traversal vulnerability in Baijiacms Project Baijiacms 4 A directory traversal vulnerability in the component system/manager/class/web/database.php was discovered in Baijiacms V4 which allows attackers to arbitrarily delete folders on the server via the "id" parameter. | 6.5 |
| 2021-10-29 | CVE-2020-25881 | Path Traversal vulnerability in Ranko Rkcms A vulnerability was discovered in the filename parameter in pathindex.php?r=cms-backend/attachment/delete&sub=&filename=../../../../111.txt&filetype=image/jpeg of the master version of RKCMS. | 5.5 |
| 2021-10-28 | CVE-2021-3823 | Path Traversal vulnerability in Bitdefender Gravityzone Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of Bitdefender GravityZone allows an attacker to execute arbitrary code on vulnerable instances. | 9.8 |
| 2021-10-28 | CVE-2021-22404 | Path Traversal vulnerability in Huawei Emui and Magic UI There is a Directory traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality. | 5.3 |
| 2021-10-27 | CVE-2021-34762 | Path Traversal vulnerability in Cisco products A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to perform a directory traversal attack on an affected device. | 8.1 |