Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-30 | CVE-2022-38451 | Path Traversal vulnerability in multiple products A directory traversal vulnerability exists in the httpd update.cgi functionality of FreshTomato 2022.5. | 7.5 |
| 2023-01-30 | CVE-2022-25936 | Path Traversal vulnerability in Servst Project Servst Versions of the package servst before 2.0.3 are vulnerable to Directory Traversal due to improper sanitization of the filePath variable. | 7.5 |
| 2023-01-29 | CVE-2022-48285 | Path Traversal vulnerability in Jszip Project Jszip loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive. | 7.3 |
| 2023-01-27 | CVE-2022-39812 | Path Traversal vulnerability in Italtel Netmatch-S CI 5.2.020211008 Italtel NetMatch-S CI 5.2.0-20211008 allows Absolute Path Traversal under NMSCI-WebGui/SaveFileUploader. | 7.5 |
| 2023-01-27 | CVE-2022-43979 | Path Traversal vulnerability in Pandorafms Pandora FMS There is a Path Traversal that leads to a Local File Inclusion in Pandora FMS v764. | 9.8 |
| 2023-01-27 | CVE-2019-25053 | Path Traversal vulnerability in Sage FRP 1000 A path traversal vulnerability exists in Sage FRP 1000 before November 2019. | 7.5 |
| 2023-01-27 | CVE-2021-41143 | Path Traversal vulnerability in Openmage Magento OpenMage LTS is an e-commerce platform. | 7.2 |
| 2023-01-27 | CVE-2022-2712 | Path Traversal vulnerability in Eclipse Glassfish 5.1.0/6.0.0/6.2.5 In Eclipse GlassFish versions 5.1.0 to 6.2.5, there is a vulnerability in relative path traversal because it does not filter request path starting with './'. | 7.5 |
| 2023-01-26 | CVE-2022-38088 | Path Traversal vulnerability in Siretta Quartz-Gold Firmware G5.0.1.5210720141020 A directory traversal vulnerability exists in the httpd downfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. | 6.5 |
| 2023-01-26 | CVE-2022-39045 | Path Traversal vulnerability in Siretta Quartz-Gold Firmware G5.0.1.5210720141020 A file write vulnerability exists in the httpd upload.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. | 8.8 |