Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-02 | CVE-2024-22779 | Path Traversal vulnerability in Kihron Serverrpexposer 1.0.2 Directory Traversal vulnerability in Kihron ServerRPExposer v.1.0.2 and before allows a remote attacker to execute arbitrary code via the loadServerPack in ServerResourcePackProviderMixin.java. | 9.8 |
| 2024-02-02 | CVE-2024-22096 | Path Traversal vulnerability in Rapidscada Rapid Scada In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can append path traversal characters to the filename when using a specific command, allowing them to read arbitrary files from the system. | 6.5 |
| 2024-02-01 | CVE-2024-21852 | Path Traversal vulnerability in Rapidscada Rapid Scada In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can supply a malicious configuration file by utilizing a Zip Slip vulnerability in the unpacking routine to achieve remote code execution. | 8.8 |
| 2024-02-01 | CVE-2024-24756 | Path Traversal vulnerability in Crafatar Crafatar serves Minecraft avatars based on the skin for use in external applications. | 7.5 |
| 2024-02-01 | CVE-2024-24569 | Path Traversal vulnerability in Pixee Java Code Security Toolkit The Pixee Java Code Security Toolkit is a set of security APIs meant to help secure Java code. | 4.8 |
| 2024-01-31 | CVE-2024-23652 | Path Traversal vulnerability in Mobyproject Buildkit BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. | 9.1 |
| 2024-01-31 | CVE-2023-5390 | Path Traversal vulnerability in Honeywell products An attacker could potentially exploit this vulnerability, leading to files being read from the Honeywell Experion ControlEdge VirtualUOC and ControlEdge UOC. | 5.3 |
| 2024-01-31 | CVE-2024-24579 | Path Traversal vulnerability in Anchore Stereoscope stereoscope is a go library for processing container images and simulating a squash filesystem. | 9.8 |
| 2024-01-30 | CVE-2024-24565 | Path Traversal vulnerability in Cratedb CrateDB is a distributed SQL database that makes it simple to store and analyze massive amounts of data in real-time. | 6.5 |
| 2024-01-30 | CVE-2024-22523 | Path Traversal vulnerability in Fuwushe Ifair 23.8Ad0 Directory Traversal vulnerability in Qiyu iFair version 23.8_ad0 and before, allows remote attackers to obtain sensitive information via uploadimage component. | 7.5 |