Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-28 | CVE-2019-0225 | Path Traversal vulnerability in Apache Jspwiki A specially crafted url could be used to access files under the ROOT directory of the application on Apache JSPWiki 2.9.0 to 2.11.0.M2, which could be used by an attacker to obtain registered users' details. | 7.5 |
| 2019-03-28 | CVE-2018-20144 | Path Traversal vulnerability in Gitlab GitLab Community and Enterprise Edition 11.x before 11.3.13, 11.4.x before 11.4.11, and 11.5.x before 11.5.4 has Incorrect Access Control. | 7.5 |
| 2019-03-27 | CVE-2019-1010257 | Path Traversal vulnerability in Article2Pdf Project Article2Pdf An Information Disclosure / Data Modification issue exists in article2pdf_getfile.php in the article2pdf Wordpress plugin 0.24, 0.25, 0.26, 0.27. | 9.1 |
| 2019-03-27 | CVE-2019-5927 | Path Traversal vulnerability in Weban AN Directory traversal vulnerability in 'an' App for iOS Version 3.2.0 and earlier allows remote attackers to read arbitrary files via unspecified vectors. | 7.5 |
| 2019-03-27 | CVE-2019-3828 | Path Traversal vulnerability in Redhat Ansible Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path. | 4.2 |
| 2019-03-26 | CVE-2018-19856 | Path Traversal vulnerability in Gitlab GitLab CE/EE before 11.3.12, 11.4.x before 11.4.10, and 11.5.x before 11.5.3 allows Directory Traversal in Templates API. | 7.5 |
| 2019-03-25 | CVE-2019-3396 | Path Traversal vulnerability in Atlassian Confluence The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 (the fixed version for 6.6.x), from version 6.7.0 before 6.12.3 (the fixed version for 6.12.x), from version 6.13.0 before 6.13.3 (the fixed version for 6.13.x), and from version 6.14.0 before 6.14.2 (the fixed version for 6.14.x), allows remote attackers to achieve path traversal and remote code execution on a Confluence Server or Data Center instance via server-side template injection. | 9.8 |
| 2019-03-25 | CVE-2018-16858 | Path Traversal vulnerability in Libreoffice It was found that libreoffice before versions 6.0.7 and 6.1.3 was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. | 9.8 |
| 2019-03-25 | CVE-2019-6240 | Path Traversal vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.4. | 7.5 |
| 2019-03-25 | CVE-2019-3482 | Path Traversal vulnerability in HP Arcsight Logger Mitigates a directory traversal issue in ArcSight Logger versions prior to 6.7. | 6.5 |