Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-02 | CVE-2017-5229 | Path Traversal vulnerability in Rapid7 Metasploit All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 contain a directory traversal vulnerability in the Meterpreter extapi Clipboard.parse_dump() function. | 7.1 |
| 2017-03-02 | CVE-2017-5228 | Path Traversal vulnerability in Rapid7 Metasploit All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 contain a directory traversal vulnerability in the Meterpreter stdapi Dir.download() function. | 7.1 |
| 2017-02-28 | CVE-2017-5982 | Path Traversal vulnerability in Kodi 17.1 Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd. | 7.5 |
| 2017-02-27 | CVE-2017-5946 | Path Traversal vulnerability in multiple products The Zip::File component in the rubyzip gem before 1.2.1 for Ruby has a directory traversal vulnerability. | 9.8 |
| 2017-02-24 | CVE-2017-6306 | Path Traversal vulnerability in multiple products An issue was discovered in ytnef before 1.9.1. | 7.8 |
| 2017-02-17 | CVE-2016-4314 | Path Traversal vulnerability in Wso2 Carbon 4.4.5 Directory traversal vulnerability in the LogViewer Admin Service in WSO2 Carbon 4.4.5 allows remote authenticated administrators to read arbitrary files via a .. | 4.9 |
| 2017-02-13 | CVE-2017-5168 | Path Traversal vulnerability in Hanwha-Security Smart Security Manager 1.5 An issue was discovered in Hanwha Techwin Smart Security Manager Versions 1.5 and prior. | 7.5 |
| 2017-02-13 | CVE-2017-5163 | Path Traversal vulnerability in Belden Hirschmann Gecko Lite Managed Switch Firmware An issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. | 5.9 |
| 2017-02-13 | CVE-2017-5143 | Path Traversal vulnerability in Honeywell XL web II Controller Xlwebexe10208/Xlwebexe20100 An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior, and XLWeb 500 XLWebExe-1-02-08 and prior. | 8.6 |
| 2017-02-13 | CVE-2016-9364 | Path Traversal vulnerability in Fidelex Fx-2030A-Basic Firmware and Fx-2030A Firmware An issue was discovered in Fidelix FX-20 series controllers, versions prior to 11.50.19. | 7.5 |