Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-20 | CVE-2023-47702 | Path Traversal vulnerability in IBM Security Guardium KEY Lifecycle Manager 4.2.0 IBM Security Guardium Key Lifecycle Manager 4.3 could allow a remote attacker to traverse directories on the system. | 9.1 |
| 2023-12-19 | CVE-2023-38126 | Path Traversal vulnerability in Softing Edgeaggregator 3.4.0 Softing edgeAggregator Restore Configuration Directory Traversal Remote Code Execution Vulnerability. | 7.2 |
| 2023-12-18 | CVE-2023-6222 | Path Traversal vulnerability in Quttera web Malware Scanner IThe Quttera Web Malware Scanner WordPress plugin before 3.4.2.1 does not validate user input used in a path, which could allow users with an admin role to perform path traversal attacks | 7.2 |
| 2023-12-18 | CVE-2023-46177 | Path Traversal vulnerability in IBM MQ Appliance 9.3.0.0 IBM MQ Appliance 9.3 LTS and 9.3 CD could allow a remote attacker to traverse directories on the system. | 7.5 |
| 2023-12-18 | CVE-2023-5115 | Path Traversal vulnerability in multiple products An absolute path traversal attack exists in the Ansible automation platform. | 6.3 |
| 2023-12-18 | CVE-2023-6908 | Path Traversal vulnerability in Dfirkuiper Kuiper 2.3.4 A vulnerability, which was classified as problematic, was found in DFIRKuiper Kuiper 2.3.4. | 5.9 |
| 2023-12-17 | CVE-2023-6900 | Path Traversal vulnerability in Rmountjoy92 Dashmachine 0.54 A vulnerability, which was classified as critical, has been found in rmountjoy92 DashMachine 0.5-4. | 9.1 |
| 2023-12-17 | CVE-2023-6893 | Path Traversal vulnerability in Hikvision Intercom Broadcast System A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK) and classified as problematic. | 7.5 |
| 2023-12-16 | CVE-2023-6559 | Path Traversal vulnerability in Web-Soudan MW WP Form The MW WP Form plugin for WordPress is vulnerable to arbitrary file deletion in all versions up to, and including, 5.0.3. | 9.8 |
| 2023-12-16 | CVE-2021-42797 | Path Traversal vulnerability in Aveva Edge 2020/8.1 Path traversal vulnerability in AVEVA Edge (formerly InduSoft Web Studio) versions R2020 and prior allows an unauthenticated user to steal the Windows access token of the user account configured for accessing external DB resources. | 7.5 |