Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-05 | CVE-2015-9266 | Path Traversal vulnerability in multiple products The web management interface of Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP (formerly TOUGHSwitch) allows an unauthenticated attacker to upload and write arbitrary files using directory traversal techniques. | 9.8 |
| 2018-09-05 | CVE-2018-16518 | Path Traversal vulnerability in Primx Zed! and Zed! Free A directory traversal vulnerability with remote code execution in Prim'X Zed! FREE through 1.0 build 186 and Zed! Limited Edition through 6.1 build 2208 allows creation of arbitrary files on a user's workstation using crafted ZED! containers because the watermark loading function can place an executable file into a Startup folder. | 9.8 |
| 2018-09-04 | CVE-2018-0646 | Path Traversal vulnerability in Ponsoftware Explzh Directory traversal vulnerability in Explzh v.7.58 and earlier allows an attacker to read arbitrary files via unspecified vectors. | 7.8 |
| 2018-09-04 | CVE-2018-16446 | Path Traversal vulnerability in Seamcms Seacms An issue was discovered in SeaCMS through 6.61. | 7.5 |
| 2018-09-02 | CVE-2018-16367 | Path Traversal vulnerability in Qduoj Onlinejudge 2.0 In OnlineJudge 2.0, the sandbox has an incorrect access control vulnerability that can write a file anywhere. | 9.9 |
| 2018-09-02 | CVE-2018-16344 | Path Traversal vulnerability in Zzcms 8.3 An issue was discovered in zzcms 8.3. | 7.5 |
| 2018-09-01 | CVE-2018-16320 | Path Traversal vulnerability in Idreamsoft Icms 7.0.11 idreamsoft iCMS 7.0.11 allows admincp.php?app=config Directory Traversal, resulting in execution of arbitrary PHP code from a ZIP file. | 7.2 |
| 2018-08-31 | CVE-2018-3787 | Path Traversal vulnerability in Simplehttpserver Project Simplehttpserver Path traversal in simplehttpserver <v0.2.1 allows listing any file on the server. | 7.5 |
| 2018-08-30 | CVE-2018-16237 | Path Traversal vulnerability in Damicms 6.0.1 An issue was discovered in damiCMS V6.0.1. | 2.7 |
| 2018-08-30 | CVE-2018-15745 | Path Traversal vulnerability in Argussurveillance DVR 4.0.0.0 Argus Surveillance DVR 4.0.0.0 devices allow Unauthenticated Directory Traversal, leading to File Disclosure via a ..%2F in the WEBACCOUNT.CGI RESULTPAGE parameter. | 7.5 |