Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-01 | CVE-2019-15039 | Path Traversal vulnerability in Jetbrains Teamcity 2018.2.4 An issue was discovered in JetBrains TeamCity 2018.2.4. | 9.8 |
| 2019-09-30 | CVE-2019-4423 | Path Traversal vulnerability in IBM Sterling File Gateway IBM Sterling File Gateway 2.2.0.0 through 6.0.1.0 could allow a remote attacker to traverse directories on the system. | 5.3 |
| 2019-09-30 | CVE-2017-18636 | Path Traversal vulnerability in Esafenet CDG 20170101 CDG through 2017-01-01 allows downloadDocument.jsp?command=download&pathAndName= directory traversal. | 7.5 |
| 2019-09-27 | CVE-2019-9281 | Path Traversal vulnerability in Google Android 10.0 In GoogleContactsSyncAdapter, there is a possible path traversal due to improper input sanitization. | 7.5 |
| 2019-09-27 | CVE-2019-8074 | Path Traversal vulnerability in Adobe Coldfusion 2016/2018 ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Path Traversal vulnerability. | 9.8 |
| 2019-09-27 | CVE-2019-16902 | Path Traversal vulnerability in Reputeinfosystems Arforms 3.7.1 In the ARforms plugin 3.7.1 for WordPress, arf_delete_file in arformcontroller.php allows unauthenticated deletion of an arbitrary file by supplying the full pathname. | 7.5 |
| 2019-09-26 | CVE-2019-16915 | Path Traversal vulnerability in Netgate Pfsense An issue was discovered in pfSense through 2.4.4-p3. | 9.8 |
| 2019-09-26 | CVE-2019-16903 | Path Traversal vulnerability in Plutinosoft Platinum 1.2.0 Platinum UPnP SDK 1.2.0 allows Directory Traversal in Core/PltHttpServer.cpp because it checks for /.. | 5.3 |
| 2019-09-25 | CVE-2019-12666 | Path Traversal vulnerability in Cisco IOS XE A vulnerability in the Guest Shell of Cisco IOS XE Software could allow an authenticated, local attacker to perform directory traversal on the base Linux operating system of Cisco IOS XE Software. | 6.7 |
| 2019-09-25 | CVE-2019-16868 | Path Traversal vulnerability in Emlog emlog through 6.0.0beta has an arbitrary file deletion vulnerability via an admin/data.php?action=dell_all_bak request with directory traversal sequences in the bak[] parameter. | 9.8 |