Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-08 | CVE-2023-4782 | Path Traversal vulnerability in Hashicorp Terraform Terraform version 1.0.8 through 1.5.6 allows arbitrary file write during the `init` operation if run on maliciously crafted Terraform configuration. | 7.8 |
| 2023-09-08 | CVE-2023-40924 | Path Traversal vulnerability in Contec Solarview Compact Firmware 4.0/5.0/6.0 SolarView Compact < 6.00 is vulnerable to Directory Traversal. | 7.5 |
| 2023-09-06 | CVE-2021-28644 | Path Traversal vulnerability in Adobe products Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Path traversal vulnerability. | 7.8 |
| 2023-09-06 | CVE-2021-35980 | Path Traversal vulnerability in Adobe products Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Path traversal vulnerability. | 7.8 |
| 2023-09-06 | CVE-2023-41930 | Path Traversal vulnerability in Jenkins JOB Configuration History Jenkins Job Configuration History Plugin 1227.v7a_79fc4dc01f and earlier does not restrict the 'name' query parameter when rendering a history entry, allowing attackers to have Jenkins render a manipulated configuration history that was not created by the plugin. | 4.3 |
| 2023-09-05 | CVE-2023-4480 | Path Traversal vulnerability in PHP-Fusion PHPfusion Due to an out-of-date dependency in the “Fusion File Manager” component accessible through the admin panel, an attacker can send a crafted request that allows them to read the contents of files on the system accessible within the privileges of the running process. | 5.5 |
| 2023-09-05 | CVE-2023-39448 | Path Traversal vulnerability in Ss-Proj Shirasagi Path traversal vulnerability in SHIRASAGI prior to v1.18.0 allows a remote authenticated attacker to alter or create arbitrary files on the server, resulting in arbitrary code execution. | 8.8 |
| 2023-09-05 | CVE-2023-4748 | Path Traversal vulnerability in Yonyou Ufida-Nc A vulnerability, which was classified as critical, has been found in Yongyou UFIDA-NC up to 20230807. | 7.5 |
| 2023-09-04 | CVE-2023-41057 | Path Traversal vulnerability in Plannigan Hyper Bump IT hyper-bump-it is a command line tool for updating the version in project files.`hyper-bump-it` reads a file glob pattern from the configuration file. | 5.5 |
| 2023-09-04 | CVE-2023-4614 | Path Traversal vulnerability in LG LED Assistant 2.1.45 This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG LED Assistant. | 9.8 |