Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-31 | CVE-2020-26806 | Path Traversal vulnerability in Objectplanet Opinio admin/file.do in ObjectPlanet Opinio before 7.15 allows Unrestricted File Upload of executable JSP files, resulting in remote code execution, because filePath can have directory traversal and fileContent can be valid JSP code. | 8.8 |
| 2021-07-30 | CVE-2021-28966 | Path Traversal vulnerability in Ruby-Lang Ruby In Ruby through 3.0 on Windows, a remote attacker can submit a crafted path when a Web application handles a parameter with TmpDir. | 7.5 |
| 2021-07-30 | CVE-2021-30483 | Path Traversal vulnerability in Isomorphic-Git isomorphic-git before 1.8.2 allows Directory Traversal via a crafted repository. | 5.3 |
| 2021-07-28 | CVE-2021-23415 | Path Traversal vulnerability in Elfinder.Aspnet Project Elfinder.Aspnet This affects the package elFinder.AspNet before 1.1.1. | 7.5 |
| 2021-07-25 | CVE-2021-37439 | Path Traversal vulnerability in NCH Flexiserver 6.00 NCH FlexiServer v6.00 suffers from a syslog?file=/.. | 6.5 |
| 2021-07-25 | CVE-2021-37440 | Path Traversal vulnerability in NCH Axon PBX 2.02 NCH Axon PBX v2.22 and earlier allows path traversal for file disclosure via the logprop?file=/.. | 6.5 |
| 2021-07-25 | CVE-2021-37441 | Path Traversal vulnerability in NCH Axon PBX 2.02 NCH Axon PBX v2.22 and earlier allows path traversal for file deletion via the logdelete?file=/.. | 8.8 |
| 2021-07-25 | CVE-2021-37442 | Path Traversal vulnerability in Nchsoftware IVM Attendant 5.12 NCH IVM Attendant v5.12 and earlier allows path traversal via viewfile?file=/.. | 6.5 |
| 2021-07-25 | CVE-2021-37443 | Path Traversal vulnerability in Nchsoftware IVM Attendant 5.12 NCH IVM Attendant v5.12 and earlier allows path traversal via the logdeleteselected check0 parameter for file deletion. | 8.1 |
| 2021-07-25 | CVE-2021-37445 | Path Traversal vulnerability in Nchsoftware Quorum In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via logprop?file=/.. | 6.5 |