Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-30 | CVE-2019-17322 | Path Traversal vulnerability in Clipsoft Rexpert 1.0.0.527 ClipSoft REXPERT 1.0.0.527 and earlier version allows arbitrary file creation via a POST request with the parameter set to the file path to be written. | 6.5 |
| 2019-10-29 | CVE-2019-3976 | Path Traversal vulnerability in Mikrotik Routeros RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below are vulnerable to an arbitrary directory creation vulnerability via the upgrade package's name field. | 8.8 |
| 2019-10-29 | CVE-2019-10743 | Path Traversal vulnerability in Archiver Project Archiver All versions of archiver allow attacker to perform a Zip Slip attack via the "unarchive" functions. | 5.5 |
| 2019-10-29 | CVE-2009-3887 | Path Traversal vulnerability in Ytnef Project Ytnef ytnef has directory traversal | 9.8 |
| 2019-10-28 | CVE-2019-18189 | Path Traversal vulnerability in Trendmicro Apex One, Officescan and Worry-Free Business Security A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow an attacker to bypass authentication and log on to an affected product's management console as a root user. | 9.8 |
| 2019-10-28 | CVE-2019-18187 | Path Traversal vulnerability in Trendmicro Officescan 11.0/Xg Trend Micro OfficeScan versions 11.0 and XG (12.0) could be exploited by an attacker utilizing a directory traversal vulnerability to extract files from an arbitrary zip file to a specific folder on the OfficeScan server, which could potentially lead to remote code execution (RCE). | 7.5 |
| 2019-10-28 | CVE-2019-14450 | Path Traversal vulnerability in Repetier-Server A directory traversal vulnerability was discovered in RepetierServer.exe in Repetier-Server 0.8 through 0.91 that allows for the creation of a user controlled XML file at an unintended location. | 9.8 |
| 2019-10-28 | CVE-2019-17224 | Path Traversal vulnerability in Compal Ch7465Lg Firmware Ch7465Lgncip6.12.18.252P6Nosh The web interface of the Compal Broadband CH7465LG modem (version CH7465LG-NCIP-6.12.18.25-2p6-NOSH) is vulnerable to a /%2f/ path traversal attack, which can be exploited in order to test for the existence of a file pathname outside of the web root directory. | 5.3 |
| 2019-10-28 | CVE-2005-2349 | Path Traversal vulnerability in ZOO Project ZOO 2.1027 Zoo 2.10 has Directory traversal | 7.5 |
| 2019-10-25 | CVE-2019-4400 | Path Traversal vulnerability in IBM Cloud Orchestrator IBM Cloud Orchestrator 2.4 through 2.4.0.5 and 2.5 through 2.5.0.9 could allow a remote attacker to traverse directories on the system. | 4.3 |