Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE CVE VULNERABILITY TITLE RISK
2019-02-01 CVE-2018-0722 Path Traversal vulnerability in Qnap Photo Station
Path Traversal vulnerability in Photo Station versions: 5.7.2 and earlier in QTS 4.3.4, 5.4.4 and earlier in QTS 4.3.3, 5.2.8 and earlier in QTS 4.2.6 could allow remote attackers to access sensitive information on the device.
network
low complexity
qnap CWE-22
7.5
2019-01-31 CVE-2018-19043 Path Traversal vulnerability in Media File Manager Project Media File Manager 1.4.2
The Media File Manager plugin 1.4.2 for WordPress allows arbitrary file renaming (specifying a "from" and "to" filename) via a ../ directory traversal in the dir parameter of an mrelocator_rename action to the wp-admin/admin-ajax.php URI.
network
low complexity
media-file-manager-project CWE-22
5.3
2019-01-31 CVE-2018-19042 Path Traversal vulnerability in Media File Manager Project Media File Manager 1.4.2
The Media File Manager plugin 1.4.2 for WordPress allows arbitrary file movement via a ../ directory traversal in the dir_from and dir_to parameters of an mrelocator_move action to the wp-admin/admin-ajax.php URI.
network
low complexity
media-file-manager-project CWE-22
5.3
2019-01-31 CVE-2018-19040 Path Traversal vulnerability in Media File Manager Project Media File Manager 1.4.2
The Media File Manager plugin 1.4.2 for WordPress allows directory listing via a ../ directory traversal in the dir parameter of an mrelocator_getdir action to the wp-admin/admin-ajax.php URI.
network
low complexity
media-file-manager-project CWE-22
5.3
2019-01-31 CVE-2019-6111 Path Traversal vulnerability in multiple products
An issue was discovered in OpenSSH 7.9.
5.9
2019-01-30 CVE-2019-7237 Path Traversal vulnerability in Idreamsoft Icms 7.0.13
An issue was discovered in idreamsoft iCMS 7.0.13 on Windows.
network
low complexity
idreamsoft CWE-22
7.5
2019-01-30 CVE-2019-7236 Path Traversal vulnerability in Idreamsoft Icms 7.0.13
An issue was discovered in idreamsoft iCMS 7.0.13.
network
low complexity
idreamsoft CWE-22
7.5
2019-01-30 CVE-2019-7235 Path Traversal vulnerability in Idreamsoft Icms 7.0.13
An issue was discovered in idreamsoft iCMS 7.0.13.
network
low complexity
idreamsoft CWE-22
7.5
2019-01-30 CVE-2019-7234 Path Traversal vulnerability in Idreamsoft Icms 7.0.13
An issue was discovered in idreamsoft iCMS 7.0.13.
network
low complexity
idreamsoft CWE-22
critical
9.1
2019-01-29 CVE-2019-7160 Path Traversal vulnerability in Idreamsoft Icms 7.0.13
idreamsoft iCMS 7.0.13 allows admincp.php?app=files ../ Directory Traversal via the udir parameter to files.admincp.php, resulting in execution of arbitrary PHP code from a ZIP file via the admincp.php?app=apps zipfile parameter to apps.admincp.php.
network
low complexity
idreamsoft CWE-22
critical
9.8