Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-10 | CVE-2021-31538 | Path Traversal vulnerability in Lancom-Systems Lcos FX 10.5 LANCOM R&S Unified Firewall (UF) devices running LCOS FX 10.5 allow Relative Path Traversal. | 7.5 |
| 2021-06-10 | CVE-2021-34363 | Path Traversal vulnerability in multiple products The thefuck (aka The Fuck) package before 3.31 for Python allows Path Traversal that leads to arbitrary file deletion via the "undo archive operation" feature. | 9.1 |
| 2021-06-09 | CVE-2021-0097 | Path Traversal vulnerability in Intel EFI Bios 7215 Path traversal in the BMC firmware for Intel(R) Server Board M10JNP2SB before version EFI BIOS 7215, BMC 8100.01.08 may allow an unauthenticated user to potentially enable a denial of service via adjacent access. | 6.5 |
| 2021-06-08 | CVE-2021-33203 | Path Traversal vulnerability in multiple products Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. | 4.9 |
| 2021-06-07 | CVE-2021-23391 | Path Traversal vulnerability in Calipso Project Calipso This affects all versions of package calipso. | 7.1 |
| 2021-06-07 | CVE-2021-33896 | Path Traversal vulnerability in multiple products Dino before 0.1.2 and 0.2.x before 0.2.1 allows Directory Traversal (only for creation of new files) via URI-encoded path separators. | 5.3 |
| 2021-06-07 | CVE-2021-20517 | Path Traversal vulnerability in IBM Websphere Application Server ND IBM WebSphere Application Server Network Deployment 8.5 and 9.0 could allow a remote authenticated attacker to traverse directories. | 8.8 |
| 2021-06-04 | CVE-2020-36142 | Path Traversal vulnerability in Bloofox Bloofoxcms 0.5.2.1 BloofoxCMS 0.5.2.1 allows Directory traversal vulnerability by inserting '../' payloads within the 'fileurl' parameter. | 6.5 |
| 2021-06-02 | CVE-2020-6950 | Path Traversal vulnerability in multiple products Directory traversal in Eclipse Mojarra before 2.3.14 allows attackers to read arbitrary files via the loc parameter or con parameter. | 6.5 |
| 2021-06-01 | CVE-2021-29088 | Path Traversal vulnerability in Synology Diskstation Manager Improper limitation of a pathname to a restricted directory ('Path Traversal') in cgi component in Synology DiskStation Manager (DSM) before 6.2.4-25553 allows local users to execute arbitrary code via unspecified vectors. | 7.8 |