Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-08 | CVE-2018-15450 | Path Traversal vulnerability in Cisco Prime Collaboration 12.1 A vulnerability in the web-based UI of Cisco Prime Collaboration Assurance could allow an authenticated, remote attacker to overwrite files on the file system. | 6.5 |
| 2018-11-07 | CVE-2018-19052 | Path Traversal vulnerability in multiple products An issue was discovered in mod_alias_physical_handler in mod_alias.c in lighttpd before 1.4.50. | 7.5 |
| 2018-11-06 | CVE-2018-16475 | Path Traversal vulnerability in Knight Project Knight 0.0.1 A Path Traversal in Knightjs versions <= 0.0.1 allows an attacker to read content of arbitrary files on a remote server. | 7.5 |
| 2018-11-06 | CVE-2018-16473 | Path Traversal vulnerability in Takeapeek Project Takeapeek A path traversal in takeapeek module versions <=0.2.2 allows an attacker to list directory and files. | 5.3 |
| 2018-11-06 | CVE-2018-9459 | Path Traversal vulnerability in Google Android In Attachment of Attachment.java and getFilePath of EmlAttachmentProvider.java, there is a possible Elevation of Privilege due to a path traversal error. | 8.8 |
| 2018-11-06 | CVE-2018-9445 | Path Traversal vulnerability in Google Android In readMetadata of Utils.cpp, there is a possible path traversal bug due to a confused deputy. | 6.8 |
| 2018-11-05 | CVE-2018-18950 | Path Traversal vulnerability in Kindeditor KindEditor through 4.1.11 has a path traversal vulnerability in php/upload_json.php. | 7.5 |
| 2018-11-05 | CVE-2018-18936 | Path Traversal vulnerability in Popojicms 2.0.1 An issue was discovered in PopojiCMS v2.0.1. | 7.5 |
| 2018-11-01 | CVE-2018-18777 | Path Traversal vulnerability in Microstrategy web 7 Directory traversal vulnerability in Microstrategy Web, version 7, in "/WebMstr7/servlet/mstrWeb" (in the parameter subpage) allows remote authenticated users to bypass intended SecurityManager restrictions and list a parent directory via a /.. | 4.3 |
| 2018-11-01 | CVE-2018-18890 | Path Traversal vulnerability in 1234N Minicms 1.10 MiniCMS 1.10 allows full path disclosure via /mc-admin/post.php?state=delete&delete= with an invalid filename. | 5.3 |