Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-11 | CVE-2020-25247 | Path Traversal vulnerability in Hyland Onbase An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. | 7.5 |
| 2020-09-04 | CVE-2019-20916 | Path Traversal vulnerability in multiple products The pip package before 19.2 for Python allows Directory Traversal when a URL is given in an install command, because a Content-Disposition header can have ../ in a filename, as demonstrated by overwriting the /root/.ssh/authorized_keys file. | 7.5 |
| 2020-09-04 | CVE-2020-3365 | Path Traversal vulnerability in Cisco Enterprise Network Function Virtualization Infrastructure A vulnerability in the directory permissions of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to perform a directory traversal attack on a limited set of restricted directories. | 6.5 |
| 2020-09-03 | CVE-2020-25068 | Path Traversal vulnerability in Setelsa-Security Conacwin 3.7.1.2 Setelsa Conacwin v3.7.1.2 is vulnerable to a local file inclusion vulnerability. | 7.5 |
| 2020-09-01 | CVE-2020-6142 | Path Traversal vulnerability in Os4Ed Opensis 7.3 A remote code execution vulnerability exists in the Modules.php functionality of OS4Ed openSIS 7.3. | 9.8 |
| 2020-09-01 | CVE-2012-3337 | Path Traversal vulnerability in IBM Infosphere Guardium 8.0/8.01/8.2 IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to traverse directories on the system. | 5.3 |
| 2020-09-01 | CVE-2020-7669 | Path Traversal vulnerability in U-Root This affects all versions of package github.com/u-root/u-root/pkg/tarutil. | 7.5 |
| 2020-09-01 | CVE-2020-7666 | Path Traversal vulnerability in U-Root This affects all versions of package github.com/u-root/u-root/pkg/cpio. | 7.5 |
| 2020-09-01 | CVE-2020-7665 | Path Traversal vulnerability in U-Root This affects all versions of package github.com/u-root/u-root/pkg/uzip. | 7.5 |
| 2020-08-31 | CVE-2020-25032 | Path Traversal vulnerability in multiple products An issue was discovered in Flask-CORS (aka CORS Middleware for Flask) before 3.0.9. | 7.5 |