Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE CVE VULNERABILITY TITLE RISK
2023-05-31 CVE-2023-30197 Path Traversal vulnerability in Webbax Myinventory 1.6.6
Incorrect Access Control in the module "My inventory" (myinventory) <= 1.6.6 from Webbax for PrestaShop, allows a guest to download personal information without restriction by performing a path traversal attack.
network
low complexity
webbax CWE-22
7.5
7.5
2023-05-31 CVE-2022-47526 Path Traversal vulnerability in Fox-It FOX Datadiode Firmware 3.4.3
Fox-IT DataDiode (aka Fox DataDiode) 3.4.3 suffers from a path traversal vulnerability with resultant arbitrary writing of files.
network
low complexity
fox-it CWE-22
critical
 9.8
9.8
2023-05-30 CVE-2022-36243 Path Traversal vulnerability in Shopbeat Shop Beat Media Player 2.5.95
Shop Beat Solutions (pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Directory Traversal via server.shopbeat.co.za.
network
low complexity
shopbeat CWE-22
5.3
5.3
2023-05-30 CVE-2023-33177 Path Traversal vulnerability in Xibosignage Xibo
Xibo is a content management system (CMS).
network
low complexity
xibosignage CWE-22
8.8
8.8
2023-05-30 CVE-2023-30196 Path Traversal vulnerability in Webbax Salesbooster 1.10.4
Prestashop salesbooster <= 1.10.4 is vulnerable to Incorrect Access Control via modules/salesbooster/downloads/download.php.
network
low complexity
webbax CWE-22
7.5
7.5
2023-05-29 CVE-2022-24629 Path Traversal vulnerability in Audiocodes Device Manager Express
An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752.
network
low complexity
audiocodes CWE-22
critical
 9.8
9.8
2023-05-29 CVE-2022-24632 Path Traversal vulnerability in Audiocodes Device Manager Express
An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752.
network
low complexity
audiocodes CWE-22
5.3
5.3
2023-05-29 CVE-2021-27825 Path Traversal vulnerability in Mercurycom Mac1200R Firmware
A directory traversal vulnerability on Mercury MAC1200R devices allows attackers to read arbitrary files via a web-static/ URL.
network
low complexity
mercurycom CWE-22
7.5
7.5
2023-05-29 CVE-2023-29380 Path Traversal vulnerability in Linuxmint Warpinator
Warpinator before 1.6.0 allows remote file deletion via directory traversal in top_dir_basenames.
network
low complexity
linuxmint CWE-22
7.5
7.5
2023-05-26 CVE-2023-32317 Path Traversal vulnerability in Autolabproject Autolab
Autolab is a course management service that enables auto-graded programming assignments.
network
low complexity
autolabproject CWE-22
7.2
7.2