Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-06 | CVE-2014-9014 | Path Traversal vulnerability in Wpmarketplace Project Wpmarketplace 2.4.0 Directory traversal vulnerability in the ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin before 2.4.1 for WordPress allows remote authenticated users to download arbitrary files via a .. | 4.3 |
| 2019-11-06 | CVE-2019-10218 | Path Traversal vulnerability in multiple products A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a pathname to the client with separators. | 6.5 |
| 2019-11-02 | CVE-2019-18665 | Path Traversal vulnerability in Secudos Domos The Log module in SECUDOS DOMOS before 5.6 allows local file inclusion. | 7.5 |
| 2019-10-31 | CVE-2019-13551 | Path Traversal vulnerability in Advantech Wise-Paas/Rmm 3.3.29 Advantech WISE-PaaS/RMM, Versions 3.3.29 and prior. | 9.8 |
| 2019-10-30 | CVE-2019-17324 | Path Traversal vulnerability in Clipsoft Rexpert 1.0.0.527 ClipSoft REXPERT 1.0.0.527 and earlier version allows directory traversal by issuing a special HTTP POST request with ../ characters. | 6.5 |
| 2019-10-30 | CVE-2019-17322 | Path Traversal vulnerability in Clipsoft Rexpert 1.0.0.527 ClipSoft REXPERT 1.0.0.527 and earlier version allows arbitrary file creation via a POST request with the parameter set to the file path to be written. | 6.5 |
| 2019-10-29 | CVE-2019-3976 | Path Traversal vulnerability in Mikrotik Routeros RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below are vulnerable to an arbitrary directory creation vulnerability via the upgrade package's name field. | 8.8 |
| 2019-10-29 | CVE-2019-10743 | Path Traversal vulnerability in Archiver Project Archiver All versions of archiver allow attacker to perform a Zip Slip attack via the "unarchive" functions. | 5.5 |
| 2019-10-29 | CVE-2009-3887 | Path Traversal vulnerability in Ytnef Project Ytnef ytnef has directory traversal | 9.8 |
| 2019-10-28 | CVE-2019-18189 | Path Traversal vulnerability in Trendmicro Apex One, Officescan and Worry-Free Business Security A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow an attacker to bypass authentication and log on to an affected product's management console as a root user. | 9.8 |