Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-23 | CVE-2023-46122 | Path Traversal vulnerability in Scala-Sbt IO and SBT sbt is a build tool for Scala, Java, and others. | 7.1 |
| 2023-10-23 | CVE-2021-26736 | Path Traversal vulnerability in Zscaler Client Connector Multiple vulnerabilities in the Zscaler Client Connector Installer and Uninstaller for Windows prior to 3.6 allowed execution of binaries from a low privileged path. | 7.8 |
| 2023-10-22 | CVE-2021-46897 | Path Traversal vulnerability in Wagtailcrx Codered Extensions views.py in Wagtail CRX CodeRed Extensions (formerly CodeRed CMS or coderedcms) before 0.22.3 allows upward protected/..%2f..%2f path traversal when serving protected media. | 6.5 |
| 2023-10-20 | CVE-2023-4274 | Path Traversal vulnerability in Wpvivid Migration, Backup, Staging The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to Directory Traversal in versions up to, and including, 0.9.89. | 6.5 |
| 2023-10-20 | CVE-2023-5414 | Path Traversal vulnerability in Icegram Express The Icegram Express plugin for WordPress is vulnerable to Directory Traversal in versions up to, and including, 5.6.23 via the show_es_logs function. | 7.2 |
| 2023-10-19 | CVE-2023-45823 | Path Traversal vulnerability in Artifacthub HUB Artifact Hub is a web-based application that enables finding, installing, and publishing packages and configurations for CNCF projects. | 7.5 |
| 2023-10-19 | CVE-2023-45277 | Path Traversal vulnerability in Spaceapplications Yamcs 5.8.6 Yamcs 5.8.6 is vulnerable to directory traversal (issue 1 of 2). | 7.5 |
| 2023-10-19 | CVE-2023-45278 | Path Traversal vulnerability in Spaceapplications Yamcs 5.8.6 Directory Traversal vulnerability in the storage functionality of the API in Yamcs 5.8.6 allows attackers to delete arbitrary files via crafted HTTP DELETE request. | 9.1 |
| 2023-10-19 | CVE-2023-31046 | Path Traversal vulnerability in Papercut MF A Path Traversal vulnerability exists in PaperCut NG before 22.1.1 and PaperCut MF before 22.1.1. | 6.5 |
| 2023-10-19 | CVE-2023-5212 | Path Traversal vulnerability in Quantumcloud AI Chatbot The AI ChatBot plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 4.8.9 as well as version 4.9.2. | 8.1 |