Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-02-01 | CVE-2018-0722 | Path Traversal vulnerability in Qnap Photo Station Path Traversal vulnerability in Photo Station versions: 5.7.2 and earlier in QTS 4.3.4, 5.4.4 and earlier in QTS 4.3.3, 5.2.8 and earlier in QTS 4.2.6 could allow remote attackers to access sensitive information on the device. | 7.5 |
2019-01-31 | CVE-2018-19043 | Path Traversal vulnerability in Media File Manager Project Media File Manager 1.4.2 The Media File Manager plugin 1.4.2 for WordPress allows arbitrary file renaming (specifying a "from" and "to" filename) via a ../ directory traversal in the dir parameter of an mrelocator_rename action to the wp-admin/admin-ajax.php URI. | 5.3 |
2019-01-31 | CVE-2018-19042 | Path Traversal vulnerability in Media File Manager Project Media File Manager 1.4.2 The Media File Manager plugin 1.4.2 for WordPress allows arbitrary file movement via a ../ directory traversal in the dir_from and dir_to parameters of an mrelocator_move action to the wp-admin/admin-ajax.php URI. | 5.3 |
2019-01-31 | CVE-2018-19040 | Path Traversal vulnerability in Media File Manager Project Media File Manager 1.4.2 The Media File Manager plugin 1.4.2 for WordPress allows directory listing via a ../ directory traversal in the dir parameter of an mrelocator_getdir action to the wp-admin/admin-ajax.php URI. | 5.3 |
2019-01-31 | CVE-2019-6111 | Path Traversal vulnerability in multiple products An issue was discovered in OpenSSH 7.9. | 5.9 |
2019-01-30 | CVE-2019-7237 | Path Traversal vulnerability in Idreamsoft Icms 7.0.13 An issue was discovered in idreamsoft iCMS 7.0.13 on Windows. | 7.5 |
2019-01-30 | CVE-2019-7236 | Path Traversal vulnerability in Idreamsoft Icms 7.0.13 An issue was discovered in idreamsoft iCMS 7.0.13. | 7.5 |
2019-01-30 | CVE-2019-7235 | Path Traversal vulnerability in Idreamsoft Icms 7.0.13 An issue was discovered in idreamsoft iCMS 7.0.13. | 7.5 |
2019-01-30 | CVE-2019-7234 | Path Traversal vulnerability in Idreamsoft Icms 7.0.13 An issue was discovered in idreamsoft iCMS 7.0.13. | 9.1 |
2019-01-29 | CVE-2019-7160 | Path Traversal vulnerability in Idreamsoft Icms 7.0.13 idreamsoft iCMS 7.0.13 allows admincp.php?app=files ../ Directory Traversal via the udir parameter to files.admincp.php, resulting in execution of arbitrary PHP code from a ZIP file via the admincp.php?app=apps zipfile parameter to apps.admincp.php. | 9.8 |