Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-05 | CVE-2017-7358 | Path Traversal vulnerability in multiple products In LightDM through 1.22.0, a directory traversal issue in debian/guest-account.sh allows local attackers to own arbitrary directory path locations and escalate privileges to root when the guest user logs out. | 7.3 |
| 2017-03-29 | CVE-2017-4980 | Path Traversal vulnerability in EMC Isilon Onefs EMC Isilon OneFS is affected by a path traversal vulnerability that may potentially be exploited by attackers to compromise the affected system. | 7.5 |
| 2017-03-29 | CVE-2017-7258 | Path Traversal vulnerability in Auromeera Emli 1.0 HTTP Exploit in eMLi Portal in AuroMeera Technometrix Pvt. | 7.5 |
| 2017-03-27 | CVE-2015-8309 | Path Traversal vulnerability in Fomori Cherrymusic 0.35.2 Directory traversal vulnerability in Cherry Music before 0.36.0 allows remote authenticated users to read arbitrary files via the "value" parameter to "download." | 4.3 |
| 2017-03-24 | CVE-2017-7240 | Path Traversal vulnerability in Miele Professional Pst10 Webserver An issue was discovered on Miele Professional PST10 devices. | 7.5 |
| 2017-03-24 | CVE-2017-5869 | Path Traversal vulnerability in Nuxeo Directory traversal vulnerability in the file import feature in Nuxeo Platform 6.0, 7.1, 7.2, and 7.3 allows remote authenticated users to upload and execute arbitrary JSP code via a .. | 8.8 |
| 2017-03-23 | CVE-2016-10048 | Path Traversal vulnerability in multiple products Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote attackers to load arbitrary modules via unspecified vectors. | 7.5 |
| 2017-03-22 | CVE-2017-3851 | Path Traversal vulnerability in Cisco IOX 1.1.0/1.1(0) A Directory Traversal vulnerability in the web framework code of the Cisco application-hosting framework (CAF) component of the Cisco IOx application environment could allow an unauthenticated, remote attacker to read any file from the CAF in the virtual instance running on the affected device. | 7.5 |
| 2017-03-20 | CVE-2017-6805 | Path Traversal vulnerability in Mobatek Mobaxterm 9.4 Directory traversal vulnerability in the TFTP server in MobaXterm Personal Edition 9.4 allows remote attackers to read arbitrary files via a .. | 5.3 |
| 2017-03-17 | CVE-2014-8704 | Path Traversal vulnerability in Wondercms 2014 Directory traversal vulnerability in index.php in Wonder CMS 2014 allows remote attackers to include and execute arbitrary local files via a crafted theme. | 9.8 |