Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-08 | CVE-2023-31181 | Path Traversal vulnerability in Wjjsoft Innokb 2.2.1 WJJ Software - InnoKB Server, InnoKB/Console 2.2.1 - CWE-22: Path Traversal | 7.5 |
| 2023-05-05 | CVE-2023-32235 | Path Traversal vulnerability in Ghost Ghost before 5.42.1 allows remote attackers to read arbitrary files within the active theme's folder via /assets/built%2F..%2F..%2F/ directory traversal. | 7.5 |
| 2023-05-04 | CVE-2023-25289 | Path Traversal vulnerability in Virtualreception Digital Reciptie Win7Sp1Rtm.10111918506.1.7601.1.0.65792 Directory Traversal vulnerability in virtualreception Digital Receptie version win7sp1_rtm.101119-1850 6.1.7601.1.0.65792 in embedded web server, allows attacker to gain sensitive information via a crafted GET request. | 7.5 |
| 2023-05-04 | CVE-2023-30268 | Path Traversal vulnerability in Cltphp 6.0 CLTPHP <=6.0 is vulnerable to Improper Input Validation. | 9.8 |
| 2023-05-04 | CVE-2022-47757 | Path Traversal vulnerability in IMO 2022.11.1051 In imo.im 2022.11.1051, a path traversal vulnerability delivered via an unsanitized deeplink can force the application to write a file into the application's data directory. | 9.8 |
| 2023-05-03 | CVE-2023-27993 | Path Traversal vulnerability in Fortinet Fortiadc A relative path traversal [CWE-23] in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a privileged attacker to delete arbitrary directories from the underlying file system via crafted CLI commands. | 7.1 |
| 2023-05-02 | CVE-2022-47875 | Path Traversal vulnerability in Jedox Cloud and Jedox A Directory Traversal vulnerability in /be/erpc.php in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to execute arbitrary code. | 8.8 |
| 2023-05-02 | CVE-2022-48482 | Path Traversal vulnerability in 3CX 3CX before 18 Update 2 Security Hotfix build 18.0.2.315 on Windows allows unauthenticated remote attackers to read certain files via /Electron/download directory traversal. | 7.5 |
| 2023-05-02 | CVE-2022-48483 | Path Traversal vulnerability in 3CX 3CX before 18 Hotfix 1 build 18.0.3.461 on Windows allows unauthenticated remote attackers to read %WINDIR%\system32 files via /Electron/download directory traversal in conjunction with a path component that has a drive letter and uses backslash characters. | 7.5 |
| 2023-05-01 | CVE-2015-10105 | Path Traversal vulnerability in Ip-Finder IP Blacklist Cloud A vulnerability, which was classified as critical, was found in IP Blacklist Cloud Plugin up to 3.42 on WordPress. | 9.8 |