Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-27 | CVE-2017-2595 | Path Traversal vulnerability in Redhat Jboss Enterprise Application Platform It was found that the log file viewer in Red Hat JBoss Enterprise Application 6 and 7 allows arbitrary file read to authenticated user via path traversal. | 6.5 |
| 2018-07-27 | CVE-2018-10862 | Path Traversal vulnerability in Redhat products WildFly Core before version 6.0.0.Alpha3 does not properly validate file paths in .war archives, allowing for the extraction of crafted .war archives to overwrite arbitrary files. | 5.5 |
| 2018-07-26 | CVE-2018-0617 | Path Traversal vulnerability in Chama Memocgi Directory traversal vulnerability in ChamaNet MemoCGI v2.1800 to v2.2200 allows remote attackers to read arbitrary files via unspecified vectors. | 7.5 |
| 2018-07-25 | CVE-2018-1002209 | Path Traversal vulnerability in Quazip Project Quazip QuaZIP before 0.7.6 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. | 5.5 |
| 2018-07-25 | CVE-2018-1002208 | Path Traversal vulnerability in Sharpziplib Project Sharpziplib SharpZipLib before 1.0 RC1 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. | 5.5 |
| 2018-07-25 | CVE-2018-1002207 | Path Traversal vulnerability in Archiver Project Archiver mholt/archiver golang package before e4ef56d48eb029648b0e895bb0b6a393ef0829c3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in an archive entry that is mishandled during extraction. | 5.5 |
| 2018-07-25 | CVE-2018-1002206 | Path Traversal vulnerability in Sharpcompress Project Sharpcompress SharpCompress before 0.21.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. | 5.5 |
| 2018-07-25 | CVE-2018-1002205 | Path Traversal vulnerability in Dotnetzip.Semverd Project Dotnetzip.Semverd DotNetZip.Semvered before 1.11.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. | 5.5 |
| 2018-07-25 | CVE-2018-1002204 | Path Traversal vulnerability in Adm-Zip Project Adm-Zip adm-zip npm library before 0.4.9 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. | 5.5 |
| 2018-07-25 | CVE-2018-1002203 | Path Traversal vulnerability in Unzipper Project Unzipper unzipper npm library before 0.8.13 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. | 5.5 |