Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-26 | CVE-2015-9538 | Path Traversal vulnerability in Imagely Nextgen Gallery The NextGEN Gallery plugin before 2.1.15 for WordPress allows ../ Directory Traversal in path selection. | 6.5 |
| 2019-11-26 | CVE-2011-4350 | Path Traversal vulnerability in multiple products Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. | 6.5 |
| 2019-11-25 | CVE-2019-17406 | Path Traversal vulnerability in Nokia Impact Nokia IMPACT < 18A has path traversal that may lead to RCE if chained with CVE-2019-1743 | 5.3 |
| 2019-11-25 | CVE-2015-1396 | Path Traversal vulnerability in multiple products A Directory Traversal vulnerability exists in the GNU patch before 2.7.4. | 7.5 |
| 2019-11-25 | CVE-2019-17404 | Path Traversal vulnerability in Nokia Impact Nokia IMPACT < 18A: allows full path disclosure | 4.3 |
| 2019-11-22 | CVE-2019-13157 | Path Traversal vulnerability in Naver Vaccine 2.1.4 nsGreen.dll in Naver Vaccine 2.1.4 allows remote attackers to overwrite arbitary files via directory traversal sequences in a filename within nsz archive. | 7.5 |
| 2019-11-21 | CVE-2013-3311 | Path Traversal vulnerability in Loftek Nexus 543 Firmware Directory traversal vulnerability in the Loftek Nexus 543 IP Camera allows remote attackers to read arbitrary files via a .. | 7.5 |
| 2019-11-21 | CVE-2019-16758 | Path Traversal vulnerability in Lexmark Services Monitor Firmware 2.27.4.0.39 In Lexmark Services Monitor 2.27.4.0.39 (running on TCP port 2070), a remote attacker can use a directory traversal technique using /../../../ or ..%2F..%2F..%2F to obtain local files on the host operating system. | 7.5 |
| 2019-11-21 | CVE-2019-10767 | Path Traversal vulnerability in Iobroker Iobroker.Js-Controller An attacker can include file contents from outside the `/adapter/xxx/` directory, where `xxx` is the name of an existent adapter like "admin". | 7.5 |
| 2019-11-21 | CVE-2019-16540 | Path Traversal vulnerability in Jenkins Support Core A path traversal vulnerability in Jenkins Support Core Plugin 2.63 and earlier allows attackers with Overall/Read permission to delete arbitrary files on the Jenkins master. | 6.5 |