Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE CVE VULNERABILITY TITLE RISK
2023-01-31 CVE-2023-0592 Path Traversal vulnerability in Jefferson Project Jefferson 0.3/0.4
A path traversal vulnerability affects jefferson's JFFS2 filesystem extractor.
local
low complexity
jefferson-project CWE-22
5.5
5.5
2023-01-31 CVE-2023-0593 Path Traversal vulnerability in Yaffshiv Project Yaffshiv 0.1
A path traversal vulnerability affects yaffshiv YAFFS filesystem extractor.
local
low complexity
yaffshiv-project CWE-22
5.5
5.5
2023-01-31 CVE-2022-39059 Path Traversal vulnerability in Changingtec Megaservisignadapter 1.0.17.0823
ChangingTech MegaServiSignAdapter component has a path traversal vulnerability within its file reading function.
network
low complexity
changingtec CWE-22
7.5
7.5
2023-01-30 CVE-2022-22731 Path Traversal vulnerability in Schneider-Electric Ecostruxure Power Commission
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in a function that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause path traversal attacks.
network
low complexity
schneider-electric CWE-22
critical
 9.8
9.8
2023-01-30 CVE-2022-38451 Path Traversal vulnerability in multiple products
A directory traversal vulnerability exists in the httpd update.cgi functionality of FreshTomato 2022.5.
network
low complexity
freshtomato siretta CWE-22
7.5
7.5
2023-01-30 CVE-2022-25936 Path Traversal vulnerability in Servst Project Servst
Versions of the package servst before 2.0.3 are vulnerable to Directory Traversal due to improper sanitization of the filePath variable.
network
low complexity
servst-project CWE-22
7.5
7.5
2023-01-29 CVE-2022-48285 Path Traversal vulnerability in Jszip Project Jszip
loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive.
network
low complexity
jszip-project CWE-22
7.3
7.3
2023-01-27 CVE-2022-39812 Path Traversal vulnerability in Italtel Netmatch-S CI 5.2.020211008
Italtel NetMatch-S CI 5.2.0-20211008 allows Absolute Path Traversal under NMSCI-WebGui/SaveFileUploader.
network
low complexity
italtel CWE-22
7.5
7.5
2023-01-27 CVE-2022-43979 Path Traversal vulnerability in Pandorafms Pandora FMS
There is a Path Traversal that leads to a Local File Inclusion in Pandora FMS v764.
network
low complexity
pandorafms CWE-22
critical
 9.8
9.8
2023-01-27 CVE-2019-25053 Path Traversal vulnerability in Sage FRP 1000
A path traversal vulnerability exists in Sage FRP 1000 before November 2019.
network
low complexity
sage CWE-22
7.5
7.5