Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-18 | CVE-2019-12173 | Path Traversal vulnerability in Macdown Project Macdown 0.7.1 MacDown 0.7.1 (870) allows remote code execution via a file:\\\ URI, with a .app pathname, in the HREF attribute of an A element. | 8.8 |
| 2019-05-17 | CVE-2019-12172 | Path Traversal vulnerability in Typora 0.9.9.21.1 Typora 0.9.9.21.1 (1913) allows arbitrary code execution via a modified file: URL syntax in the HREF attribute of an AREA element, as demonstrated by file:\\\ on macOS or Linux, or file://C| on Windows. | 7.8 |
| 2019-05-17 | CVE-2019-5936 | Path Traversal vulnerability in Cybozu Garoon Directory traversal vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated attackers to obtain files without access privileges via the application 'Work Flow'. | 5.4 |
| 2019-05-17 | CVE-2018-17180 | Path Traversal vulnerability in Open-Emr Openemr An issue was discovered in OpenEMR before 5.0.1 Patch 7. | 5.3 |
| 2019-05-17 | CVE-2019-8925 | Path Traversal vulnerability in Zohocorp Manageengine Netflow Analyzer 7.0.0.2 An issue was discovered in Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2. | 4.3 |
| 2019-05-16 | CVE-2019-12138 | Path Traversal vulnerability in Macdown Project Macdown 0.7.1 MacDown 0.7.1 allows directory traversal, for execution of arbitrary programs, via a file:/// or ../ substring in a shared note. | 7.8 |
| 2019-05-16 | CVE-2019-12137 | Path Traversal vulnerability in Typora 0.9.9.24.6 Typora 0.9.9.24.6 on macOS allows directory traversal, for execution of arbitrary programs, via a file:/// or ../ substring in a shared note. | 7.8 |
| 2019-05-16 | CVE-2019-1820 | Path Traversal vulnerability in Cisco Prime Infrastructure A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager software could allow an authenticated, remote attacker to download and view files within the application that should be restricted. | 6.5 |
| 2019-05-16 | CVE-2019-1819 | Path Traversal vulnerability in Cisco Prime Infrastructure A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager software could allow an authenticated, remote attacker to download and view files within the application that should be restricted. | 6.5 |
| 2019-05-16 | CVE-2019-1818 | Path Traversal vulnerability in Cisco Prime Infrastructure A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager software could allow an authenticated, remote attacker to download and view files within the application that should be restricted. | 6.5 |