Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-21 | CVE-2019-14206 | Path Traversal vulnerability in Nevma Adaptive Images An Arbitrary File Deletion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to delete arbitrary files via the $REQUEST['adaptive-images-settings'] parameter in adaptive-images-script.php. | 7.5 |
| 2019-07-21 | CVE-2019-14205 | Path Traversal vulnerability in Nevma Adaptive Images A Local File Inclusion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to retrieve arbitrary files via the $REQUEST['adaptive-images-settings']['source_file'] parameter in adaptive-images-script.php. | 7.5 |
| 2019-07-19 | CVE-2019-1010151 | Path Traversal vulnerability in Zzcms Zzmcms 8.3 zzcms zzmcms 8.3 and earlier is affected by: File Delete to getshell. | 9.8 |
| 2019-07-17 | CVE-2019-13584 | Path Traversal vulnerability in Fanucamerica Robotics Virtual Robot Controller 8.23 The remote admin webserver on FANUC Robotics Virtual Robot Controller 8.23 allows Directory Traversal via a forged HTTP request. | 5.3 |
| 2019-07-17 | CVE-2019-10352 | Path Traversal vulnerability in Jenkins A path traversal vulnerability in Jenkins 2.185 and earlier, LTS 2.176.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java allowed attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory, resulting in an arbitrary file write on the Jenkins master when scheduling a build. | 6.5 |
| 2019-07-17 | CVE-2019-4430 | Path Traversal vulnerability in IBM Maximo Asset Management 7.6 IBM Maximo Asset Management 7.6 could allow a remote attacker to traverse directories on the system. | 7.5 |
| 2019-07-17 | CVE-2019-13623 | Path Traversal vulnerability in NSA Ghidra In NSA Ghidra before 9.1, path traversal can occur in RestoreTask.java (from the package ghidra.app.plugin.core.archive) via an archive with an executable file that has an initial ../ in its filename. | 7.8 |
| 2019-07-16 | CVE-2019-12990 | Path Traversal vulnerability in Citrix Netscaler Sd-Wan and Sd-Wan Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 allow Directory Traversal. | 9.8 |
| 2019-07-15 | CVE-2019-0887 | Path Traversal vulnerability in Microsoft products A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'. | 8.0 |
| 2019-07-15 | CVE-2019-5447 | Path Traversal vulnerability in Http-File-Server Project Http-File-Server A path traversal vulnerability in <= v0.2.6 of http-file-server npm module allows attackers to list files in arbitrary folders. | 5.3 |