Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-02 | CVE-2020-21590 | Path Traversal vulnerability in Wuzhicms 4.1.0 Directory traversal in coreframe/app/template/admin/index.php in WUZHI CMS 4.1.0 allows attackers to list files in arbitrary directories via the dir parameter. | 4.3 |
| 2021-04-02 | CVE-2021-3374 | Path Traversal vulnerability in Rstudio Shiny Server Directory traversal in RStudio Shiny Server before 1.5.16 allows attackers to read the application source code, involving an encoded slash. | 5.3 |
| 2021-04-01 | CVE-2021-20078 | Path Traversal vulnerability in Zohocorp Manageengine Opmanager Manage Engine OpManager builds below 125346 are vulnerable to a remote denial of service vulnerability due to a path traversal issue in spark gateway component. | 9.1 |
| 2021-03-29 | CVE-2021-29417 | Path Traversal vulnerability in Gitjacker Project Gitjacker 0.0.1/0.0.2/0.0.3 gitjacker before 0.1.0 allows remote attackers to execute arbitrary code via a crafted .git directory because of directory traversal. | 9.8 |
| 2021-03-26 | CVE-2021-20206 | Path Traversal vulnerability in Linuxfoundation Container Network Interface An improper limitation of path name flaw was found in containernetworking/cni in versions before 0.8.1. | 7.2 |
| 2021-03-25 | CVE-2020-10584 | Path Traversal vulnerability in Invigo Automatic Device Management 5.0 A directory traversal on the /admin/search_by.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote attackers to read arbitrary server files accessible to the user running the application. | 7.5 |
| 2021-03-25 | CVE-2020-10579 | Path Traversal vulnerability in Invigo Automatic Device Management 5.0 A directory traversal on the /admin/sysmon.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote attackers to list the content of arbitrary server directories accessible to the user running the application. | 7.5 |
| 2021-03-25 | CVE-2021-25367 | Path Traversal vulnerability in Samsung Notes 2.0.02.31 Path Traversal vulnerability in Samsung Notes prior to version 4.2.00.22 allows attackers to access local files without permission. | 5.4 |
| 2021-03-24 | CVE-2021-1385 | Path Traversal vulnerability in Cisco IOS and IOS XE A vulnerability in the Cisco IOx application hosting environment of multiple Cisco platforms could allow an authenticated, remote attacker to conduct directory traversal attacks and read and write files on the underlying operating system or host system. | 6.5 |
| 2021-03-17 | CVE-2020-13924 | Path Traversal vulnerability in Apache Ambari In Apache Ambari versions 2.6.2.2 and earlier, malicious users can construct file names for directory traversal and traverse to other directories to download files. | 7.5 |