Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-09 | CVE-2019-10242 | Path Traversal vulnerability in Eclipse Kura In Eclipse Kura versions up to 4.0.0, the SkinServlet did not checked the path passed during servlet call, potentially allowing path traversal in get requests for a limited number of file types. | 5.3 |
| 2019-04-09 | CVE-2019-10632 | Path Traversal vulnerability in Zyxel Nas326 Firmware 5.21 A directory traversal vulnerability in the file browser component on the Zyxel NAS 326 version 5.21 and below allows a lower privileged user to change the location of any other user's files. | 6.5 |
| 2019-04-08 | CVE-2019-1785 | Path Traversal vulnerability in Clamav 0.101.0/0.101.1 A vulnerability in the RAR file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. | 7.8 |
| 2019-04-08 | CVE-2014-5436 | Path Traversal vulnerability in Honeywell Experion Process Knowledge System R400/R410/R430 A directory traversal vulnerability exists in the confd.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, which could lead to possible information disclosure. | 7.5 |
| 2019-04-05 | CVE-2019-9489 | Path Traversal vulnerability in Trendmicro products A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions 10.0, 9.5 and 9.0) could allow an attacker to modify arbitrary files on the affected product's management console. | 7.5 |
| 2019-04-04 | CVE-2018-20229 | Path Traversal vulnerability in Gitlab GitLab Community and Enterprise Edition before 11.3.14, 11.4.x before 11.4.12, and 11.5.x before 11.5.5 allows Directory Traversal. | 7.5 |
| 2019-04-03 | CVE-2019-5423 | Path Traversal vulnerability in Http-Live-Simulator Project Http-Live-Simulator 1.0.5 Path traversal vulnerability in http-live-simulator npm package version 1.0.5 allows arbitrary path to be accessed on the file system by a remote attacker. | 7.5 |
| 2019-04-02 | CVE-2018-1618 | Path Traversal vulnerability in IBM Security Privileged Identity Manager 2.1.1 IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 could allow a remote attacker to traverse directories on the system. | 7.5 |
| 2019-04-01 | CVE-2019-5889 | Path Traversal vulnerability in Overit Geocall 6.3 An log-management directory traversal issue was discovered in OverIT Geocall 6.3 before build 2:346977. | 7.5 |
| 2019-04-01 | CVE-2018-13299 | Path Traversal vulnerability in Synology Calendar Relative path traversal vulnerability in Attachment Uploader in Synology Calendar before 2.2.2-0532 allows remote authenticated users to upload arbitrary files via the filename parameter. | 6.5 |