Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-05 | CVE-2019-19628 | Path Traversal vulnerability in Gitlab In GitLab EE 11.3 through 12.5.3, 12.4.5, and 12.3.8, insufficient parameter sanitization for the Maven package registry could lead to privilege escalation and remote code execution vulnerabilities under certain conditions. | 9.8 |
| 2020-01-03 | CVE-2019-11994 | Path Traversal vulnerability in HP products A security vulnerability has been identified in HPE SimpliVity 380 Gen 9, HPE SimpliVity 380 Gen 10, HPE SimpliVity 380 Gen 10 G, HPE SimpliVity 2600 Gen 10, SimpliVity OmniCube, SimpliVity OmniStack for Cisco, SimpliVity OmniStack for Lenovo and SimpliVity OmniStack for Dell nodes. | 9.8 |
| 2020-01-03 | CVE-2019-19088 | Path Traversal vulnerability in Gitlab Gitlab Enterprise Edition (EE) 11.3 through 12.4.2 allows Directory Traversal. | 9.8 |
| 2019-12-31 | CVE-2019-7751 | Path Traversal vulnerability in Ricoh Fusionpro VDP A directory traversal and local file inclusion vulnerability in FPProducerInternetServer.exe in Ricoh MarcomCentral, formerly PTI Marketing, FusionPro VDP before 10.0 allows a remote attacker to list or enumerate sensitive contents of files. | 7.5 |
| 2019-12-30 | CVE-2019-20085 | Path Traversal vulnerability in TVT Nvms-1000 Firmware TVT NVMS-1000 devices allow GET /.. | 7.5 |
| 2019-12-27 | CVE-2019-19781 | Path Traversal vulnerability in Citrix products An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. | 9.8 |
| 2019-12-26 | CVE-2019-6022 | Path Traversal vulnerability in Cybozu Office Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.3 allows remote authenticated attackers to alter arbitrary files via the 'Customapp' function. | 6.5 |
| 2019-12-19 | CVE-2019-19141 | Path Traversal vulnerability in Plex Media Server 0.9.9.2/1.13.2.5154/1.18.2.2029 The Camera Upload functionality in Plex Media Server through 1.18.2.2029 allows remote authenticated users to write files anywhere the user account running the Plex Media Server has permissions. | 8.8 |
| 2019-12-19 | CVE-2019-7483 | Path Traversal vulnerability in Sonicwall SMA 100 Firmware 9.0.0.0/9.0.0.3 In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server. | 7.5 |
| 2019-12-18 | CVE-2019-15600 | Path Traversal vulnerability in Http Server Project Http Server 1.0.12 A Path traversal exists in http_server which allows an attacker to read arbitrary system files. | 7.5 |