Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-30 | CVE-2020-21526 | Path Traversal vulnerability in Halo 1.1.3 An Arbitrary file writing vulnerability in halo v1.1.3. | 9.8 |
| 2020-09-30 | CVE-2020-21525 | Path Traversal vulnerability in Halo 1.1.3 Halo V1.1.3 is affected by: Arbitrary File reading. | 7.5 |
| 2020-09-30 | CVE-2020-21522 | Path Traversal vulnerability in Halo 1.1.3 An issue was discovered in halo V1.1.3. | 9.8 |
| 2020-09-30 | CVE-2020-21244 | Path Traversal vulnerability in Frontaccounting 2.4.7 An issue was discovered in FrontAccounting 2.4.7. | 4.9 |
| 2020-09-25 | CVE-2020-24621 | Path Traversal vulnerability in Openmrs Htmlformentry A remote code execution (RCE) vulnerability was discovered in the htmlformentry (aka HTML Form Entry) module before 3.11.0 for OpenMRS. | 8.8 |
| 2020-09-23 | CVE-2020-24626 | Path Traversal vulnerability in HPE Utility Computing Service Meter 1.9 Unathenticated directory traversal in the ReceiverServlet class doPost() method can lead to arbitrary remote code execution in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9. | 9.8 |
| 2020-09-23 | CVE-2020-24625 | Path Traversal vulnerability in HPE Utility Computing Service Meter 1.9 Unathenticated directory traversal in the ReceiverServlet class doGet() method can lead to arbitrary file reads in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9. | 7.5 |
| 2020-09-23 | CVE-2020-24624 | Path Traversal vulnerability in HPE Utility Computing Service Meter 1.9 Unathenticated directory traversal in the DownloadServlet class execute() method can lead to arbitrary file reads in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9. | 7.5 |
| 2020-09-23 | CVE-2020-3143 | Path Traversal vulnerability in Cisco products A vulnerability in the video endpoint API (xAPI) of Cisco TelePresence Collaboration Endpoint (CE) Software, Cisco TelePresence Codec (TC) Software, and Cisco RoomOS Software could allow an authenticated, remote attacker to conduct directory traversal attacks on an affected device. | 7.2 |
| 2020-09-22 | CVE-2020-14028 | Path Traversal vulnerability in Ozeki NG SMS Gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. | 7.2 |