Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-23 | CVE-2021-20247 | Path Traversal vulnerability in multiple products A flaw was found in mbsync before v1.3.5 and v1.4.1. | 7.4 |
| 2021-02-22 | CVE-2021-26725 | Path Traversal vulnerability in Nozominetworks Central Management Control and Guardian Path Traversal vulnerability when changing timezone using web GUI of Nozomi Networks Guardian, CMC allows an authenticated administrator to read-protected system files. | 4.9 |
| 2021-02-22 | CVE-2020-29453 | Path Traversal vulnerability in Atlassian Data Center, Jira Data Center and Jira Server The CachingResourceDownloadRewriteRule class in Jira Server and Jira Data Center before version 8.5.11, from 8.6.0 before 8.13.3, and from 8.14.0 before 8.15.0 allowed unauthenticated remote attackers to read arbitrary files within WEB-INF and META-INF directories via an incorrect path access check. | 5.3 |
| 2021-02-19 | CVE-2021-27328 | Path Traversal vulnerability in Yeastar Neogate Tg400 Firmware 91.3.0.3 Yeastar NeoGate TG400 91.3.0.3 devices are affected by Directory Traversal. | 6.5 |
| 2021-02-19 | CVE-2020-9050 | Path Traversal vulnerability in Johnsoncontrols Metasys Reporting Engine 2.0/2.1 Path Traversal vulnerability exists in Metasys Reporting Engine (MRE) Web Services which could allow a remote unauthenticated attacker to access and download arbitrary files from the system. | 7.5 |
| 2021-02-18 | CVE-2021-23340 | Path Traversal vulnerability in Pimcore This affects the package pimcore/pimcore before 6.8.8. | 7.1 |
| 2021-02-18 | CVE-2021-20354 | Path Traversal vulnerability in IBM Websphere Application Server IBM WebSphere Application Server 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories. | 7.5 |
| 2021-02-17 | CVE-2021-27367 | Path Traversal vulnerability in Boltcms Bolt Controller/Backend/FileEditController.php and Controller/Backend/FilemanagerController.php in Bolt before 4.1.13 allow Directory Traversal. | 7.5 |
| 2021-02-17 | CVE-2020-13550 | Path Traversal vulnerability in Advantech Webaccess/Scada 9.0.1 A local file inclusion vulnerability exists in the installation functionality of Advantech WebAccess/SCADA 9.0.1. | 7.7 |
| 2021-02-17 | CVE-2021-22857 | Path Traversal vulnerability in Changjia Property Management System Project Changjia Property Management System 1.00 The CGE page with download function contains a Directory Traversal vulnerability. | 7.5 |