Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-17 | CVE-2019-4430 | Path Traversal vulnerability in IBM Maximo Asset Management 7.6 IBM Maximo Asset Management 7.6 could allow a remote attacker to traverse directories on the system. | 7.5 |
| 2019-07-17 | CVE-2019-13623 | Path Traversal vulnerability in NSA Ghidra In NSA Ghidra before 9.1, path traversal can occur in RestoreTask.java (from the package ghidra.app.plugin.core.archive) via an archive with an executable file that has an initial ../ in its filename. | 7.8 |
| 2019-07-16 | CVE-2019-12990 | Path Traversal vulnerability in Citrix Netscaler Sd-Wan and Sd-Wan Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 allow Directory Traversal. | 9.8 |
| 2019-07-15 | CVE-2019-0887 | Path Traversal vulnerability in Microsoft products A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'. | 8.0 |
| 2019-07-15 | CVE-2019-5447 | Path Traversal vulnerability in Http-File-Server Project Http-File-Server A path traversal vulnerability in <= v0.2.6 of http-file-server npm module allows attackers to list files in arbitrary folders. | 5.3 |
| 2019-07-11 | CVE-2019-3415 | Path Traversal vulnerability in ZTE Zxmw Nr8000 Firmware 2.4.4.03/2.4.4.04 ZTE MW NR8000V2.4.4.03 and NR8000V2.4.4.04 are impacted by path traversal vulnerability. | 5.7 |
| 2019-07-11 | CVE-2019-9886 | Path Traversal vulnerability in Eclass IP 2.5 Any URLs with download_attachment.php under templates or home folders can allow arbitrary files downloaded without login in BroadLearning eClass before version ip.2.5.10.2.1. | 7.5 |
| 2019-07-10 | CVE-2019-5444 | Path Traversal vulnerability in Serve-Here.Js Project Serve-Here.Js Path traversal vulnerability in version up to v1.1.3 in serve-here.js npm module allows attackers to list any file in arbitrary folder. | 5.3 |
| 2019-07-10 | CVE-2019-5221 | Path Traversal vulnerability in Huawei Mate 20 X Firmware There is a path traversal vulnerability on Huawei Share. | 6.5 |
| 2019-07-10 | CVE-2019-13396 | Path Traversal vulnerability in Getflightpath Flightpath FlightPath 4.x and 5.0-x allows directory traversal and Local File Inclusion through the form_include parameter in an index.php?q=system-handle-form-submit POST request because of an include_once in system_handle_form_submit in modules/system/system.module. | 5.3 |