Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-03 | CVE-2019-3580 | Path Traversal vulnerability in Openrefine OpenRefine through 3.1 allows arbitrary file write because Directory Traversal can occur during the import of a crafted project file. | 7.5 |
| 2019-01-02 | CVE-2018-15490 | Path Traversal vulnerability in Expressvpn An issue was discovered in ExpressVPN on Windows. | 7.1 |
| 2018-12-31 | CVE-2018-18593 | Path Traversal vulnerability in HP Ucmdb Configuration Manager Remote Directory Traversal and Remote Disclosure of Privileged Information in UCMDB Configuration Management Service, version 10.22, 10.22 CUP1, 10.22 CUP2, 10.22 CUP3, 10.22 CUP4, 10.22 CUP5, 10.22 CUP6, 10.22 CUP7, 10.33, 10.33 CUP1, 10.33 CUP2, 10.33 CUP3, 2018.02, 2018.05, 2018.08, 2018.11. | 7.5 |
| 2018-12-30 | CVE-2018-20610 | Path Traversal vulnerability in Txjia Imcat 4.4 imcat 4.4 allows directory traversal via the root/run/adm.php efile parameter. | 4.9 |
| 2018-12-30 | CVE-2018-20604 | Path Traversal vulnerability in Lfdycms LEI Feng TV CMS 3.8.6 Lei Feng TV CMS (aka LFCMS) 3.8.6 allows Directory Traversal via crafted use of ..* in Template/edit/path URIs, as demonstrated by the admin.php?s=/Template/edit/path/*web*..*..*..*..*1.txt.html URI to read the 1.txt file. | 4.9 |
| 2018-12-28 | CVE-2018-20566 | Path Traversal vulnerability in Douco Douphp 1.5 An issue was discovered in DouCo DouPHP 1.5 20181221. | 5.3 |
| 2018-12-25 | CVE-2018-20463 | Path Traversal vulnerability in Jsmol2Wp Project Jsmol2Wp 1.07 An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. | 7.5 |
| 2018-12-25 | CVE-2018-20437 | Path Traversal vulnerability in Mrbird Febs-Shiro An issue was discovered in the fileDownload function in the CommonController class in FEBS-Shiro before 2018-11-05. | 7.5 |
| 2018-12-24 | CVE-2018-7835 | Path Traversal vulnerability in Schneider-Electric Iiot Monior 3.1.38 An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in IIoT Monitor 3.1.38 which could allow access to files available to SYSTEM user. | 7.5 |
| 2018-12-21 | CVE-2018-20332 | Path Traversal vulnerability in Openwebif Project Openwebif An issue has been discovered in the OpenWebif plugin through 1.2.4 for Enigma2 based devices. | 7.5 |