Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE CVE VULNERABILITY TITLE RISK
2024-07-02 CVE-2024-5866 Path Traversal vulnerability in Delinea Privileged Access Service
Vulnerability in Delinea Centrify PAS v.
network
low complexity
delinea CWE-22
4.3
2024-07-01 CVE-2024-36991 Path Traversal vulnerability in Splunk
In Splunk Enterprise on Windows versions below 9.2.2, 9.1.5, and 9.0.10, an attacker could perform a path traversal on the /modules/messaging/ endpoint in Splunk Enterprise on Windows.
network
low complexity
splunk CWE-22
7.5
2024-07-01 CVE-2024-24749 Path Traversal vulnerability in Geoserver
GeoServer is an open source server that allows users to share and edit geospatial data.
network
low complexity
geoserver CWE-22
7.5
2024-06-25 CVE-2024-5017 Path Traversal vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2023.1.3, a path traversal vulnerability exists. A specially crafted unauthenticated HTTP request to AppProfileImport can lead can lead to information disclosure.
network
low complexity
progress CWE-22
6.5
2024-06-25 CVE-2024-5018 Path Traversal vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Path Traversal vulnerability exists Wug.UI.Areas.Wug.Controllers.SessionController.LoadNMScript.
network
low complexity
progress CWE-22
7.5
2024-06-25 CVE-2024-5019 Path Traversal vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2023.1.3,  an unauthenticated Arbitrary File Read issue exists in Wug.UI.Areas.Wug.Controllers.SessionController.CachedCSS.
network
low complexity
progress CWE-22
7.5
2024-06-24 CVE-2023-49793 Path Traversal vulnerability in Ericsson Codechecker
CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy.
network
low complexity
ericsson CWE-22
6.5
2024-06-24 CVE-2024-33879 Path Traversal vulnerability in Virtosoftware Sharepoint Bulk File Download 5.5.44
An issue was discovered in VirtoSoftware Virto Bulk File Download 5.5.44 for SharePoint 2019.
network
low complexity
virtosoftware CWE-22
critical
9.8
2024-06-24 CVE-2024-33881 Path Traversal vulnerability in Virtosoftware Sharepoint Bulk File Download 5.5.44
An issue was discovered in VirtoSoftware Virto Bulk File Download 5.5.44 for SharePoint 2019.
network
low complexity
virtosoftware CWE-22
5.3
2024-06-22 CVE-2024-21518 Path Traversal vulnerability in Opencart
This affects versions of the package opencart/opencart from 4.0.0.0.
network
low complexity
opencart CWE-22
7.2