Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-02 | CVE-2019-7859 | Path Traversal vulnerability in Magento A path traversal vulnerability in the WYSIWYG editor for Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 could result in unauthorized access to uploaded images due to insufficient access control. | 7.5 |
| 2019-08-02 | CVE-2017-18448 | Path Traversal vulnerability in Cpanel cPanel before 64.0.21 allows certain file-read operations via a Serverinfo_manpage API call (SEC-252). | 5.3 |
| 2019-08-02 | CVE-2019-10168 | Path Traversal vulnerability in Redhat products The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emulation for a domain. | 7.8 |
| 2019-08-01 | CVE-2016-10828 | Path Traversal vulnerability in Cpanel cPanel before 55.9999.141 allows arbitrary code execution because of an unsafe @INC path (SEC-97). | 8.8 |
| 2019-07-31 | CVE-2019-14452 | Path Traversal vulnerability in multiple products Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction. | 7.5 |
| 2019-07-30 | CVE-2019-13635 | Path Traversal vulnerability in Wpfastestcache WP Fastest Cache The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal. | 9.1 |
| 2019-07-29 | CVE-2019-14418 | Path Traversal vulnerability in Veritas Resiliency Platform An issue was discovered in Veritas Resiliency Platform (VRP) before 3.4 HF1. | 8.8 |
| 2019-07-29 | CVE-2019-6726 | Path Traversal vulnerability in Wpfastestcache WP Fastest Cache The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php mishandle ../ in an HTTP Referer header. | 6.5 |
| 2019-07-29 | CVE-2019-1020001 | Path Traversal vulnerability in Yardoc Yard yard before 0.9.20 allows path traversal. | 7.5 |
| 2019-07-28 | CVE-2019-14362 | Path Traversal vulnerability in Openbravo ERP 3.0 Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. | 5.4 |