Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-05 | CVE-2024-27764 | Path Traversal vulnerability in Jeewms An issue in Jeewms v.3.7 and before allows a remote attacker to escalate privileges via the AuthInterceptor component. | 9.8 |
| 2024-03-05 | CVE-2024-27765 | Path Traversal vulnerability in Jeewms Directory Traversal vulnerability in Jeewms v.3.7 and before allows a remote attacker to obtain sensitive information via the cgformTemplateController component. | 7.5 |
| 2024-03-04 | CVE-2024-27199 | Path Traversal vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible | 7.3 |
| 2024-03-04 | CVE-2024-28088 | Path Traversal vulnerability in Langchain LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to control the final part of the path parameter in a load_chain call. | 8.1 |
| 2024-03-01 | CVE-2023-38366 | Path Traversal vulnerability in IBM Filenet Content Manager 5.5.10/5.5.11/5.5.8 IBM Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a remote attacker to traverse directories on the system. | 5.3 |
| 2024-02-28 | CVE-2024-22723 | Path Traversal vulnerability in Webtrees 2.1.18 Webtrees 2.1.18 is vulnerable to Directory Traversal. | 4.9 |
| 2024-02-27 | CVE-2024-0763 | Path Traversal vulnerability in Mintplexlabs Anythingllm 0.0.1/0.1.0 Any user can delete an arbitrary folder (recursively) on a remote server due to bad input sanitization leading to path traversal. | 8.1 |
| 2024-02-26 | CVE-2024-27081 | Path Traversal vulnerability in Esphome 2023.12.9 ESPHome is a system to control your ESP8266/ESP32. | 8.8 |
| 2024-02-26 | CVE-2024-1165 | Path Traversal vulnerability in Brizy The Brizy – Page Builder plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.4.39 via the 'id'. | 6.5 |
| 2024-02-23 | CVE-2024-27318 | Path Traversal vulnerability in multiple products Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory. | 7.5 |