Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-27 | CVE-2020-22623 | Path Traversal vulnerability in Insightsoftware Jreport 15.6 Directory traversal vulnerability in Jinfornet Jreport 15.6 allows unauthenticated attackers to gain sensitive information. | 7.5 |
| 2023-07-26 | CVE-2023-23842 | Path Traversal vulnerability in Solarwinds Network Configuration Monitor The SolarWinds Network Configuration Manager was susceptible to the Directory Traversal Vulnerability. | 7.2 |
| 2023-07-25 | CVE-2022-31457 | Path Traversal vulnerability in RTX Trap Project RTX Trap 1.0 RTX TRAP v1.0 allows attackers to perform a directory traversal via a crafted request sent to the endpoint /data/. | 7.5 |
| 2023-07-25 | CVE-2022-46898 | Path Traversal vulnerability in Vocera Report Server and Voice Server An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. | 9.8 |
| 2023-07-25 | CVE-2022-46900 | Path Traversal vulnerability in Vocera Report Server and Voice Server An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. | 6.5 |
| 2023-07-25 | CVE-2022-46902 | Path Traversal vulnerability in Vocera Report Server and Voice Server An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. | 7.5 |
| 2023-07-25 | CVE-2023-33777 | Path Traversal vulnerability in Prestashop Amazon An issue in /functions/fbaorder.php of Prestashop amazon before v5.2.24 allows attackers to execute a directory traversal attack. | 5.3 |
| 2023-07-24 | CVE-2023-26045 | Path Traversal vulnerability in Nodebb NodeBB is Node.js based forum software. | 9.8 |
| 2023-07-24 | CVE-2023-34478 | Path Traversal vulnerability in Apache Shiro Apache Shiro, before 1.12.0 or 2.0.0-alpha-3, may be susceptible to a path traversal attack that results in an authentication bypass when used together with APIs or other web frameworks that route requests based on non-normalized requests. Mitigation: Update to Apache Shiro 1.12.0+ or 2.0.0-alpha-3+ | 9.8 |
| 2023-07-22 | CVE-2023-38633 | Path Traversal vulnerability in multiple products A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local filesystem outside of the expected area), as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element. | 5.5 |