Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-19 | CVE-2022-28357 | Path Traversal vulnerability in Linuxfoundation Nats-Server NATS nats-server 2.2.0 through 2.7.4 allows directory traversal because of an unintended path to a management action from a management account. | 9.8 |
| 2023-09-19 | CVE-2023-41599 | Path Traversal vulnerability in Jfinalcms Project Jfinalcms 5.0.0 An issue in the component /common/DownController.java of JFinalCMS v5.0.0 allows attackers to execute a directory traversal. | 5.3 |
| 2023-09-14 | CVE-2023-37739 | Path Traversal vulnerability in I-Doit i-doit Pro v25 and below was discovered to be vulnerable to path traversal. | 6.5 |
| 2023-09-14 | CVE-2021-28485 | Path Traversal vulnerability in Ericsson Mobile Switching Center Server BC 18A Firmware Is3.1 In Ericsson Mobile Switching Center Server (MSC-S) before IS 3.1 CP22, the SIS web application allows relative path traversal via a specific parameter in the https request after authentication, which allows access to files on the system that are not intended to be accessible via the web application. | 4.3 |
| 2023-09-13 | CVE-2023-39916 | Path Traversal vulnerability in Nlnetlabs Routinator NLnet Labs’ Routinator 0.9.0 up to and including 0.12.1 contains a possible path traversal vulnerability in the optional, off-by-default keep-rrdp-responses feature that allows users to store the content of responses received for RRDP requests. | 6.5 |
| 2023-09-12 | CVE-2023-4914 | Path Traversal vulnerability in Cecil Relative Path Traversal in GitHub repository cecilapp/cecil prior to 7.47.1. | 7.5 |
| 2023-09-12 | CVE-2023-32558 | Path Traversal vulnerability in Nodejs Node.Js The use of the deprecated API `process.binding()` can bypass the permission model through path traversal. | 7.5 |
| 2023-09-11 | CVE-2023-35670 | Path Traversal vulnerability in Google Android In computeValuesFromData of FileUtils.java, there is a possible way to insert files to other apps' external private directories due to a path traversal error. | 7.8 |
| 2023-09-11 | CVE-2023-38256 | Path Traversal vulnerability in Doverfuelingsolutions Maglink LX web Console Configuration Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 vulnerable to a path traversal attack, which could allow an attacker to access files stored on the system. | 7.5 |
| 2023-09-08 | CVE-2022-33164 | Path Traversal vulnerability in IBM Security Directory Server 7.2.0 IBM Security Directory Server 7.2.0 could allow a remote attacker to traverse directories on the system. | 9.1 |