Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE	CVE	VULNERABILITY TITLE	RISK
2019-03-21	CVE-2018-20638	Path Traversal vulnerability in Chartered Accountant : Auditor Website Project Chartered Accountant : Auditor Website 2.0.1 PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory. network low complexity chartered-accountant CWE-22	6.5
2019-03-21	CVE-2018-20635	Path Traversal vulnerability in Advance B2B Script Project Advance B2B Script 2.1.4 PHP Scripts Mall Advance B2B Script 2.1.4 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory. network low complexity advance-b2b-script-project CWE-22	4.3
2019-03-21	CVE-2018-20631	Path Traversal vulnerability in Website Seller Script Project Website Seller Script 2.0.5 PHP Scripts Mall Website Seller Script 2.0.5 allows full Path Disclosure via a request for an arbitrary image URL such as a .png file. network low complexity website-seller-script-project CWE-22	5.3
2019-03-21	CVE-2018-20630	Path Traversal vulnerability in Advance Crowdfunding Script Project Advance Crowdfunding Script 2.0.3 PHP Scripts Mall Advance Crowdfunding Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory. network low complexity advance-crowdfunding-script-project CWE-22	5.3
2019-03-21	CVE-2018-20629	Path Traversal vulnerability in Charity Donation Script Project Charity Donation Script PHP Scripts Mall Charity Donation Script readymadeb2bscript has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory. network low complexity charity-donation-script-project CWE-22	5.3
2019-03-21	CVE-2018-20628	Path Traversal vulnerability in Charity Foundation Script Project Charity Foundation Script PHP Scripts Mall Charity Foundation Script 1 through 3 allows directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory. network low complexity charity-foundation-script-project CWE-22	7.5
2019-03-21	CVE-2018-20626	Path Traversal vulnerability in Consumer Reviews Script Project Consumer Reviews Script 4.0.3 PHP Scripts Mall Consumer Reviews Script 4.0.3 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory. network low complexity consumer-reviews-script-project CWE-22	6.5
2019-03-21	CVE-2018-20525	Path Traversal vulnerability in Roxyfileman Roxy Fileman 1.4.5 Roxy Fileman 1.4.5 allows Directory Traversal in copydir.php, copyfile.php, and fileslist.php. network low complexity roxyfileman CWE-22 critical	9.1
2019-03-21	CVE-2018-19512	Path Traversal vulnerability in ENS Webgalamb 6.0/7.0 In Webgalamb through 7.0, a system/ajax.php "wgmfile restore" directory traversal vulnerability could lead to arbitrary code execution by authenticated administrator users, because PHP files are restored under the document root directory. network low complexity ens CWE-22	7.2
2019-03-21	CVE-2018-19365	Path Traversal vulnerability in Wowza Streaming Engine 4.7.4.0.1 The REST API in Wowza Streaming Engine 4.7.4.01 allows traversal of the directory structure and retrieval of a file via a remote, specifically crafted HTTP request. network low complexity wowza CWE-22 critical	9.1