Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-03-24 | CVE-2018-8968 | Path Traversal vulnerability in Zzcms 8.2 An issue was discovered in zzcms 8.2. | 7.5 |
| 2018-03-24 | CVE-2018-8965 | Path Traversal vulnerability in Zzcms 8.2 An issue was discovered in zzcms 8.2. | 7.5 |
| 2018-03-23 | CVE-2018-1211 | Path Traversal vulnerability in Dell EMC Idrac7 and EMC Idrac8 Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain a path traversal vulnerability in its Web server's URI parser which could be used to obtain specific sensitive data without authentication. | 7.5 |
| 2018-03-22 | CVE-2018-0542 | Path Traversal vulnerability in Webproxy Project Webproxy 1.7.8 Directory traversal vulnerability in WebProxy version 1.7.8 allows an attacker to read arbitrary files via unspecified vectors. | 7.5 |
| 2018-03-22 | CVE-2018-8909 | Path Traversal vulnerability in Wire The Wire application before 2018-03-07 for Android allows attackers to write to pathnames outside of the downloads directory via a ../ in a filename of a received file, related to AssetService.scala. | 7.5 |
| 2018-03-21 | CVE-2018-3710 | Path Traversal vulnerability in multiple products Gitlab Community and Enterprise Editions version 10.3.3 is vulnerable to an Insecure Temporary File in the project import component resulting remote code execution. | 7.8 |
| 2018-03-21 | CVE-2017-0918 | Path Traversal vulnerability in multiple products Gitlab Community Edition version 10.3 is vulnerable to a path traversal issue in the GitLab CI runner component resulting in remote code execution. | 8.8 |
| 2018-03-19 | CVE-2014-2674 | Path Traversal vulnerability in Ajax-Pagination Project Ajax-Pagination 1.1 Directory traversal vulnerability in the Ajax Pagination (twitter Style) plugin 1.1 for WordPress allows remote attackers to read arbitrary files via a .. | 7.5 |
| 2018-03-19 | CVE-2014-3626 | Path Traversal vulnerability in Grails Resources 1.2.0/1.2.12 The Grails Resource Plugin often has to exchange URIs for resources with other internal components. | 7.5 |
| 2018-03-17 | CVE-2018-8741 | Path Traversal vulnerability in multiple products A directory traversal flaw in SquirrelMail 1.4.22 allows an authenticated attacker to exfiltrate (or potentially delete) files from the hosting server, related to ../ in the att_local_name field in Deliver.class.php. | 8.8 |