Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-06 | CVE-2021-28172 | Path Traversal vulnerability in Deltaflow Project Deltaflow There is a Path Traversal vulnerability in the file download function of Vangene deltaFlow E-platform. | 7.5 |
| 2021-04-06 | CVE-2021-28209 | Path Traversal vulnerability in Asus products The specific function in ASUS BMC’s firmware Web management page (Delete video file function) does not filter the specific parameter. | 4.9 |
| 2021-04-06 | CVE-2021-28208 | Path Traversal vulnerability in Asus products The specific function in ASUS BMC’s firmware Web management page (Get video file function) does not filter the specific parameter. | 4.9 |
| 2021-04-06 | CVE-2021-28207 | Path Traversal vulnerability in Asus products The specific function in ASUS BMC’s firmware Web management page (Get Help file function) does not filter the specific parameter. | 4.9 |
| 2021-04-06 | CVE-2021-28206 | Path Traversal vulnerability in Asus products The specific function in ASUS BMC’s firmware Web management page (Record video file function) does not filter the specific parameter. | 4.9 |
| 2021-04-06 | CVE-2021-28205 | Path Traversal vulnerability in Asus products The specific function in ASUS BMC’s firmware Web management page (Delete SOL video file function) does not filter the specific parameter. | 4.9 |
| 2021-04-02 | CVE-2020-21590 | Path Traversal vulnerability in Wuzhicms 4.1.0 Directory traversal in coreframe/app/template/admin/index.php in WUZHI CMS 4.1.0 allows attackers to list files in arbitrary directories via the dir parameter. | 4.3 |
| 2021-04-02 | CVE-2021-3374 | Path Traversal vulnerability in Rstudio Shiny Server Directory traversal in RStudio Shiny Server before 1.5.16 allows attackers to read the application source code, involving an encoded slash. | 5.3 |
| 2021-04-01 | CVE-2021-20078 | Path Traversal vulnerability in Zohocorp Manageengine Opmanager Manage Engine OpManager builds below 125346 are vulnerable to a remote denial of service vulnerability due to a path traversal issue in spark gateway component. | 9.1 |
| 2021-03-29 | CVE-2021-29417 | Path Traversal vulnerability in Gitjacker Project Gitjacker 0.0.1/0.0.2/0.0.3 gitjacker before 0.1.0 allows remote attackers to execute arbitrary code via a crafted .git directory because of directory traversal. | 9.8 |