Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-09 | CVE-2017-6527 | Path Traversal vulnerability in Dnatools Dnalims 42015S13 An issue was discovered in dnaTools dnaLIMS 4-2015s13. | 7.5 |
| 2017-03-07 | CVE-2016-7135 | Path Traversal vulnerability in Plone Directory traversal vulnerability in Plone CMS 5.x through 5.0.6 and 4.2.x through 4.3.11 allows remote administrators to read arbitrary files via a .. | 4.9 |
| 2017-03-07 | CVE-2016-9164 | Path Traversal vulnerability in CA Unified Infrastructure Management Directory traversal vulnerability in diag.jsp file in CA Unified Infrastructure Management (formerly CA Nimsoft Monitor) 8.4 SP1 and earlier and CA Unified Infrastructure Management Snap (formerly CA Nimsoft Monitor Snap) allows remote attackers to read arbitrary files via unspecified vectors. | 7.5 |
| 2017-03-02 | CVE-2017-5231 | Path Traversal vulnerability in Rapid7 Metasploit All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 contain a directory traversal vulnerability in the Meterpreter stdapi CommandDispatcher.cmd_download() function. | 7.1 |
| 2017-03-02 | CVE-2017-5229 | Path Traversal vulnerability in Rapid7 Metasploit All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 contain a directory traversal vulnerability in the Meterpreter extapi Clipboard.parse_dump() function. | 7.1 |
| 2017-03-02 | CVE-2017-5228 | Path Traversal vulnerability in Rapid7 Metasploit All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 contain a directory traversal vulnerability in the Meterpreter stdapi Dir.download() function. | 7.1 |
| 2017-02-28 | CVE-2017-5982 | Path Traversal vulnerability in Kodi 17.1 Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd. | 7.5 |
| 2017-02-27 | CVE-2017-5946 | Path Traversal vulnerability in multiple products The Zip::File component in the rubyzip gem before 1.2.1 for Ruby has a directory traversal vulnerability. | 9.8 |
| 2017-02-24 | CVE-2017-6306 | Path Traversal vulnerability in multiple products An issue was discovered in ytnef before 1.9.1. | 7.8 |
| 2017-02-17 | CVE-2016-4314 | Path Traversal vulnerability in Wso2 Carbon 4.4.5 Directory traversal vulnerability in the LogViewer Admin Service in WSO2 Carbon 4.4.5 allows remote authenticated administrators to read arbitrary files via a .. | 4.9 |