Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-11 | CVE-2023-29986 | Path Traversal vulnerability in Spring-Boot-Actuator-Logview Project Spring-Boot-Actuator-Logview 0.2.13 spring-boot-actuator-logview 0.2.13 allows Directory Traversal to sibling directories via LogViewEndpoint.view. | 5.3 |
| 2023-05-11 | CVE-2023-30172 | Path Traversal vulnerability in Lfprojects Mlflow A directory traversal vulnerability in the /get-artifact API method of the mlflow platform up to v2.0.1 allows attackers to read arbitrary files on the server via the path parameter. | 7.5 |
| 2023-05-11 | CVE-2023-31477 | Path Traversal vulnerability in Gl-Inet products A path traversal issue was discovered on GL.iNet devices before 3.216. | 7.5 |
| 2023-05-10 | CVE-2023-31166 | Path Traversal vulnerability in Selinc products An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface could allow a remote authenticated attacker to create folders in arbitrary paths of the file system. See SEL Service Bulletin dated 2022-11-15 for more details. | 4.3 |
| 2023-05-10 | CVE-2023-27562 | Path Traversal vulnerability in N8N 0.218.0 The n8n package 0.218.0 for Node.js allows Directory Traversal. | 6.5 |
| 2023-05-10 | CVE-2022-34855 | Path Traversal vulnerability in Intel NUC PRO Software Suite Path traversal for the Intel(R) NUC Pro Software Suite before version 2.0.0.3 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-05-10 | CVE-2023-26126 | Path Traversal vulnerability in M.Static Project M.Static All versions of the package m.static are vulnerable to Directory Traversal due to improper input sanitization of the path being requested via the requestFile function. | 5.3 |
| 2023-05-09 | CVE-2023-28127 | Path Traversal vulnerability in Ivanti Avalanche A path traversal vulnerability exists in Avalanche version 6.3.x and below that when exploited could result in possible information disclosure. | 7.5 |
| 2023-05-09 | CVE-2023-20098 | Path Traversal vulnerability in Cisco Sd-Wan Vmanage A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local attacker to delete arbitrary files. This vulnerability is due to improper filtering of directory traversal character sequences within system commands. | 6.0 |
| 2023-05-08 | CVE-2023-31179 | Path Traversal vulnerability in Agilepoint NX 8.0 AgilePoint NX v8.0 SU2.2 & SU2.3 - Path traversal - Vulnerability allows path traversal and downloading files from the server, by an unspecified request. | 7.5 |