Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-22 | CVE-2019-13157 | Path Traversal vulnerability in Naver Vaccine 2.1.4 nsGreen.dll in Naver Vaccine 2.1.4 allows remote attackers to overwrite arbitary files via directory traversal sequences in a filename within nsz archive. | 7.5 |
| 2019-11-21 | CVE-2013-3311 | Path Traversal vulnerability in Loftek Nexus 543 Firmware Directory traversal vulnerability in the Loftek Nexus 543 IP Camera allows remote attackers to read arbitrary files via a .. | 7.5 |
| 2019-11-21 | CVE-2019-16758 | Path Traversal vulnerability in Lexmark Services Monitor Firmware 2.27.4.0.39 In Lexmark Services Monitor 2.27.4.0.39 (running on TCP port 2070), a remote attacker can use a directory traversal technique using /../../../ or ..%2F..%2F..%2F to obtain local files on the host operating system. | 7.5 |
| 2019-11-21 | CVE-2019-10767 | Path Traversal vulnerability in Iobroker Iobroker.Js-Controller An attacker can include file contents from outside the `/adapter/xxx/` directory, where `xxx` is the name of an existent adapter like "admin". | 7.5 |
| 2019-11-21 | CVE-2019-16540 | Path Traversal vulnerability in Jenkins Support Core A path traversal vulnerability in Jenkins Support Core Plugin 2.63 and earlier allows attackers with Overall/Read permission to delete arbitrary files on the Jenkins master. | 6.5 |
| 2019-11-20 | CVE-2019-10765 | Path Traversal vulnerability in Iobroker Iobroker.Admin iobroker.admin before 3.6.12 allows attacker to include file contents from outside the `/log/file1/` directory. | 9.8 |
| 2019-11-18 | CVE-2019-3423 | Path Traversal vulnerability in Ztehome C520V21 Firmware 2.1.14 permission and access control vulnerability, which exists in V2.1.14 and below versions of C520V21 smart camera devices. | 5.3 |
| 2019-11-14 | CVE-2019-18978 | Path Traversal vulnerability in multiple products An issue was discovered in the rack-cors (aka Rack CORS Middleware) gem before 1.0.4 for Ruby. | 5.3 |
| 2019-11-14 | CVE-2013-3073 | Path Traversal vulnerability in Netgear Wndr4700 Firmware 1.0.0.34 A Symlink Traversal vulnerability exists in NETGEAR Centria WNDR4700 Firmware 1.0.0.34. | 9.8 |
| 2019-11-14 | CVE-2019-3662 | Path Traversal vulnerability in Mcafee Advanced Threat Defense Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests. | 6.5 |