Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-07 | CVE-2017-7577 | Path Traversal vulnerability in Xiongmaitech Uc-Httpd XiongMai uc-httpd has directory traversal allowing the reading of arbitrary files via a "GET ../" HTTP request. | 9.8 |
| 2017-04-06 | CVE-2017-7565 | Path Traversal vulnerability in Splunk Hadoop Connect Splunk Hadoop Connect App has a path traversal vulnerability that allows remote authenticated users to execute arbitrary code, aka ERP-2041. | 8.8 |
| 2017-04-05 | CVE-2017-7358 | Path Traversal vulnerability in multiple products In LightDM through 1.22.0, a directory traversal issue in debian/guest-account.sh allows local attackers to own arbitrary directory path locations and escalate privileges to root when the guest user logs out. | 7.3 |
| 2017-03-29 | CVE-2017-4980 | Path Traversal vulnerability in EMC Isilon Onefs EMC Isilon OneFS is affected by a path traversal vulnerability that may potentially be exploited by attackers to compromise the affected system. | 7.5 |
| 2017-03-29 | CVE-2017-7258 | Path Traversal vulnerability in Auromeera Emli 1.0 HTTP Exploit in eMLi Portal in AuroMeera Technometrix Pvt. | 7.5 |
| 2017-03-27 | CVE-2015-8309 | Path Traversal vulnerability in Fomori Cherrymusic 0.35.2 Directory traversal vulnerability in Cherry Music before 0.36.0 allows remote authenticated users to read arbitrary files via the "value" parameter to "download." | 4.3 |
| 2017-03-24 | CVE-2017-7240 | Path Traversal vulnerability in Miele Professional Pst10 Webserver An issue was discovered on Miele Professional PST10 devices. | 7.5 |
| 2017-03-24 | CVE-2017-5869 | Path Traversal vulnerability in Nuxeo Directory traversal vulnerability in the file import feature in Nuxeo Platform 6.0, 7.1, 7.2, and 7.3 allows remote authenticated users to upload and execute arbitrary JSP code via a .. | 8.8 |
| 2017-03-23 | CVE-2016-10048 | Path Traversal vulnerability in multiple products Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote attackers to load arbitrary modules via unspecified vectors. | 7.5 |
| 2017-03-22 | CVE-2017-3851 | Path Traversal vulnerability in Cisco IOX 1.1.0/1.1(0) A Directory Traversal vulnerability in the web framework code of the Cisco application-hosting framework (CAF) component of the Cisco IOx application environment could allow an unauthenticated, remote attacker to read any file from the CAF in the virtual instance running on the affected device. | 7.5 |