Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-05 | CVE-2021-41773 | Path Traversal vulnerability in multiple products A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. | 7.5 |
| 2021-10-04 | CVE-2021-41578 | Path Traversal vulnerability in Myscada Mydesigner mySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project files. | 7.8 |
| 2021-10-04 | CVE-2021-41579 | Path Traversal vulnerability in Laquisscada Scada LCDS LAquis SCADA through 4.3.1.1085 is vulnerable to a control bypass and path traversal. | 7.8 |
| 2021-10-04 | CVE-2021-41595 | Path Traversal vulnerability in Salesagility Suitecrm SuiteCRM before 7.10.33 and 7.11.22 allows information disclosure via Directory Traversal. | 5.3 |
| 2021-10-04 | CVE-2021-41596 | Path Traversal vulnerability in Salesagility Suitecrm SuiteCRM before 7.10.33 and 7.11.22 allows information disclosure via Directory Traversal. | 5.3 |
| 2021-10-04 | CVE-2021-21706 | Path Traversal vulnerability in PHP In PHP versions 7.3.x below 7.3.31, 7.4.x below 7.4.24 and 8.0.x below 8.0.11, in Microsoft Windows environment, ZipArchive::extractTo may be tricked into writing a file outside target directory when extracting a ZIP file, thus potentially causing files to be created or overwritten, subject to OS permissions. | 6.5 |
| 2021-10-01 | CVE-2021-40960 | Path Traversal vulnerability in Galera Webtemplate 1.0 Galera WebTemplate 1.0 is affected by a directory traversal vulnerability that could reveal information from /etc/passwd and /etc/shadow. | 9.8 |
| 2021-10-01 | CVE-2021-3709 | Path Traversal vulnerability in Canonical Apport Function check_attachment_for_errors() in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a constructed crash file. | 5.5 |
| 2021-10-01 | CVE-2021-3710 | Path Traversal vulnerability in Canonical Apport An information disclosure via path traversal was discovered in apport/hookutils.py function read_file(). | 5.5 |
| 2021-09-30 | CVE-2021-41324 | Path Traversal vulnerability in Pydio Cells 2.2.9 Directory traversal in the Copy, Move, and Delete features in Pydio Cells 2.2.9 allows remote authenticated users to enumerate personal files (or Cells files belonging to any user) via the nodes parameter (for Copy and Move) or via the Path parameter (for Delete). | 6.5 |