Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-07 | CVE-2021-36717 | Path Traversal vulnerability in Synerion Timenet 9.21 Synerion TimeNet version 9.21 contains a directory traversal vulnerability where, on the "Name" parameter, the attacker can return to the root directory and open the host file. | 7.5 |
| 2021-09-01 | CVE-2021-23427 | Path Traversal vulnerability in Elfinder.Netcore Project Elfinder.Netcore This affects all versions of package elFinder.NetCore. | 9.8 |
| 2021-09-01 | CVE-2021-23428 | Path Traversal vulnerability in Elfinder.Netcore Project Elfinder.Netcore This affects all versions of package elFinder.NetCore. | 9.8 |
| 2021-09-01 | CVE-2021-39109 | Path Traversal vulnerability in Atlassian Atlasboard The renderWidgetResource resource in Atlasian Atlasboard before version 1.1.9 allows remote attackers to read arbitrary files via a path traversal vulnerability. | 7.5 |
| 2021-08-31 | CVE-2021-39180 | Path Traversal vulnerability in Frentix Openolat OpenOLAT is a web-based learning management system (LMS). | 8.8 |
| 2021-08-30 | CVE-2020-18127 | Path Traversal vulnerability in Indexhibit 2.1.5 An issue in the /config/config.php component of Indexhibit 2.1.5 allows attackers to arbitrarily view files. | 6.5 |
| 2021-08-30 | CVE-2021-22022 | Path Traversal vulnerability in VMWare products The vRealize Operations Manager API (8.x prior to 8.5) contains an arbitrary file read vulnerability. | 4.9 |
| 2021-08-27 | CVE-2021-40153 | Path Traversal vulnerability in multiple products squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash. | 8.1 |
| 2021-08-25 | CVE-2020-19547 | Path Traversal vulnerability in Popojicms 2.0.1 Directory Traversal vulnerability exists in PopojiCMS 2.0.1 via the id parameter in admin.php. | 6.5 |
| 2021-08-24 | CVE-2021-38612 | Path Traversal vulnerability in Nascent Remkon Device Manager 4.0.0.0 In NASCENT RemKon Device Manager 4.0.0.0, a Directory Traversal vulnerability in a log-reading function in maintenance/readLog.php allows an attacker to read any file via a specialized URL. | 7.5 |