Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-18 | CVE-2019-15596 | Path Traversal vulnerability in Statics-Server Project Statics-Server A path traversal in statics-server exists in all version that allows an attacker to perform a path traversal when a symlink is used within the working directory. | 7.5 |
| 2019-12-18 | CVE-2019-7289 | Path Traversal vulnerability in Apple Shortcuts A parsing issue in the handling of directory paths was addressed with improved path validation. | 5.5 |
| 2019-12-18 | CVE-2019-19845 | Path Traversal vulnerability in Joomla Joomla! In Joomla! before 3.9.14, a missing access check in framework files could lead to a path disclosure. | 5.3 |
| 2019-12-17 | CVE-2019-19848 | Path Traversal vulnerability in Typo3 An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. | 7.2 |
| 2019-12-17 | CVE-2019-19264 | Path Traversal vulnerability in Simplifile Recordfusion 20191125 In Simplifile RecordFusion through 2019-11-25, the logs and hist parameters allow remote attackers to access local files via a logger/logs?/../ or logger/hist?/../ URI. | 7.5 |
| 2019-12-16 | CVE-2019-19731 | Path Traversal vulnerability in Roxyfileman Roxy Fileman 1.4.5 Roxy Fileman 1.4.5 for .NET is vulnerable to path traversal. | 7.5 |
| 2019-12-13 | CVE-2019-19790 | Path Traversal vulnerability in Telerik Radchart and UI for Asp.Net Ajax Path traversal in RadChart in Telerik UI for ASP.NET AJAX allows a remote attacker to read and delete an image with extension .BMP, .EXIF, .GIF, .ICON, .JPEG, .PNG, .TIFF, or .WMF on the server through a specially crafted request. | 9.8 |
| 2019-12-13 | CVE-2019-5251 | Path Traversal vulnerability in Huawei products There is a path traversal vulnerability in several Huawei smartphones. | 5.5 |
| 2019-12-13 | CVE-2019-16776 | Path Traversal vulnerability in multiple products Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. | 8.1 |
| 2019-12-12 | CVE-2019-13944 | Path Traversal vulnerability in Siemens products A vulnerability has been identified in EN100 Ethernet module DNP3 variant (All versions), EN100 Ethernet module IEC 61850 variant (All versions < V4.37), EN100 Ethernet module IEC104 variant (All versions), EN100 Ethernet module Modbus TCP variant (All versions), EN100 Ethernet module PROFINET IO variant (All versions). | 5.3 |