Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-11 | CVE-2018-19181 | Path Traversal vulnerability in Yunucms 1.1.5 statics/ueditor/php/vendor/Local.class.php in YUNUCMS 1.1.5 allows arbitrary file deletion via the statics/ueditor/php/controller.php?action=remove key parameter, as demonstrated by using directory traversal to delete the install.lock file. | 7.5 |
| 2018-11-09 | CVE-2018-19124 | Path Traversal vulnerability in Prestashop PrestaShop 1.6.x before 1.6.1.23 and 1.7.x before 1.7.4.4 on Windows allows remote attackers to write to arbitrary image files. | 7.5 |
| 2018-11-08 | CVE-2018-15450 | Path Traversal vulnerability in Cisco Prime Collaboration 12.1 A vulnerability in the web-based UI of Cisco Prime Collaboration Assurance could allow an authenticated, remote attacker to overwrite files on the file system. | 6.5 |
| 2018-11-07 | CVE-2018-19052 | Path Traversal vulnerability in multiple products An issue was discovered in mod_alias_physical_handler in mod_alias.c in lighttpd before 1.4.50. | 7.5 |
| 2018-11-06 | CVE-2018-16475 | Path Traversal vulnerability in Knight Project Knight 0.0.1 A Path Traversal in Knightjs versions <= 0.0.1 allows an attacker to read content of arbitrary files on a remote server. | 7.5 |
| 2018-11-06 | CVE-2018-16473 | Path Traversal vulnerability in Takeapeek Project Takeapeek A path traversal in takeapeek module versions <=0.2.2 allows an attacker to list directory and files. | 5.3 |
| 2018-11-06 | CVE-2018-9459 | Path Traversal vulnerability in Google Android In Attachment of Attachment.java and getFilePath of EmlAttachmentProvider.java, there is a possible Elevation of Privilege due to a path traversal error. | 8.8 |
| 2018-11-06 | CVE-2018-9445 | Path Traversal vulnerability in Google Android In readMetadata of Utils.cpp, there is a possible path traversal bug due to a confused deputy. | 6.8 |
| 2018-11-05 | CVE-2018-18950 | Path Traversal vulnerability in Kindeditor KindEditor through 4.1.11 has a path traversal vulnerability in php/upload_json.php. | 7.5 |
| 2018-11-05 | CVE-2018-18936 | Path Traversal vulnerability in Popojicms 2.0.1 An issue was discovered in PopojiCMS v2.0.1. | 7.5 |