Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE	CVE	VULNERABILITY TITLE	RISK
2017-04-28	CVE-2016-8593	Path Traversal vulnerability in Trendmicro Threat Discovery Appliance 2.6.1062 Directory traversal vulnerability in upload.cgi in Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier allows remote authenticated users to execute arbitrary code via a .. network low complexity trendmicro CWE-22	8.8
2017-04-28	CVE-2017-2150	Path Traversal vulnerability in Booking Calendar Project Booking Calendar Directory traversal vulnerability in Booking Calendar version 7.0 and earlier allows remote attackers to read arbitrary files via specially crafted captcha_chalange parameter. network low complexity booking-calendar-project CWE-22	5.3
2017-04-28	CVE-2017-2119	Path Traversal vulnerability in Wbce CMS Directory traversal vulnerability in WBCE CMS 1.1.10 and earlier allows remote attackers to read arbitrary files via unspecified vectors. network low complexity wbce CWE-22	8.6
2017-04-28	CVE-2017-2117	Path Traversal vulnerability in Cubecart Directory traversal vulnerability in CubeCart versions prior to 6.1.5 allows attacker with administrator rights to read arbitrary files via unspecified vectors. network low complexity cubecart CWE-22	4.9
2017-04-28	CVE-2017-2098	Path Traversal vulnerability in Cubecart Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors. network low complexity cubecart CWE-22	6.5
2017-04-28	CVE-2017-2090	Path Traversal vulnerability in Cubecart Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors. network low complexity cubecart CWE-22	6.5
2017-04-28	CVE-2016-7843	Path Traversal vulnerability in Hibara Software products Directory traversal vulnerability in AttacheCase for Java 0.60 and earlier, AttacheCase Lite 1.4.6 and earlier, and AttacheCase Pro 1.5.7 and earlier allows remote attackers to read arbitrary files via specially crafted ATC file. local low complexity hibara-software CWE-22	5.5
2017-04-28	CVE-2016-7842	Path Traversal vulnerability in Hibara Attachecase Directory traversal vulnerability in AttacheCase 2.8.2.8 and earlier and 3.2.0.4 and earlier allows remote attackers to read arbitrary files via specially crafted ATC file. local low complexity hibara CWE-22	5.5
2017-04-27	CVE-2017-8297	Path Traversal vulnerability in Simple-File-Manager Project Simple-File-Manager 20170419 A path traversal vulnerability exists in simple-file-manager before 2017-04-26, affecting index.php (the sole "Simple PHP File Manager" component). network low complexity simple-file-manager-project CWE-22 critical	9.8
2017-04-26	CVE-2017-8283	Path Traversal vulnerability in Debian Dpkg dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU patch program and does not offer a protection mechanism for blank-indented diff hunks, which allows remote attackers to conduct directory traversal attacks via a crafted Debian source package, as demonstrated by use of dpkg-source on NetBSD. network low complexity debian CWE-22 critical	9.8