Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-09 | CVE-2023-28127 | Path Traversal vulnerability in Ivanti Avalanche A path traversal vulnerability exists in Avalanche version 6.3.x and below that when exploited could result in possible information disclosure. | 7.5 |
| 2023-05-09 | CVE-2023-20098 | Path Traversal vulnerability in Cisco Sd-Wan Vmanage A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local attacker to delete arbitrary files. This vulnerability is due to improper filtering of directory traversal character sequences within system commands. | 6.0 |
| 2023-05-08 | CVE-2023-31179 | Path Traversal vulnerability in Agilepoint NX 8.0 AgilePoint NX v8.0 SU2.2 & SU2.3 - Path traversal - Vulnerability allows path traversal and downloading files from the server, by an unspecified request. | 7.5 |
| 2023-05-08 | CVE-2023-31181 | Path Traversal vulnerability in Wjjsoft Innokb 2.2.1 WJJ Software - InnoKB Server, InnoKB/Console 2.2.1 - CWE-22: Path Traversal | 7.5 |
| 2023-05-05 | CVE-2023-32235 | Path Traversal vulnerability in Ghost Ghost before 5.42.1 allows remote attackers to read arbitrary files within the active theme's folder via /assets/built%2F..%2F..%2F/ directory traversal. | 7.5 |
| 2023-05-04 | CVE-2023-25289 | Path Traversal vulnerability in Virtualreception Digital Reciptie Win7Sp1Rtm.10111918506.1.7601.1.0.65792 Directory Traversal vulnerability in virtualreception Digital Receptie version win7sp1_rtm.101119-1850 6.1.7601.1.0.65792 in embedded web server, allows attacker to gain sensitive information via a crafted GET request. | 7.5 |
| 2023-05-04 | CVE-2023-30268 | Path Traversal vulnerability in Cltphp 6.0 CLTPHP <=6.0 is vulnerable to Improper Input Validation. | 9.8 |
| 2023-05-04 | CVE-2022-47757 | Path Traversal vulnerability in IMO 2022.11.1051 In imo.im 2022.11.1051, a path traversal vulnerability delivered via an unsanitized deeplink can force the application to write a file into the application's data directory. | 9.8 |
| 2023-05-03 | CVE-2023-27993 | Path Traversal vulnerability in Fortinet Fortiadc A relative path traversal [CWE-23] in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a privileged attacker to delete arbitrary directories from the underlying file system via crafted CLI commands. | 7.1 |
| 2023-05-02 | CVE-2022-47875 | Path Traversal vulnerability in Jedox Cloud and Jedox A Directory Traversal vulnerability in /be/erpc.php in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to execute arbitrary code. | 8.8 |