Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-29 | CVE-2022-38205 | Path Traversal vulnerability in Esri Portal for Arcgis In some non-default installations of Esri Portal for ArcGIS versions 10.9.1 and below, a directory traversal issue may allow a remote, unauthenticated attacker to traverse the file system and lead to the disclosure of sensitive data (not customer-published content). | 7.5 |
| 2022-12-29 | CVE-2022-4778 | Path Traversal vulnerability in Elvexys Streamx 6.02.01/6.04.34 StreamX applications from versions 6.02.01 to 6.04.34 are affected by a path traversal vulnerability that allows authenticated users to get unauthorized access to files on the server's filesystem. StreamX applications using StreamView HTML component with the public web server feature activated are affected. | 6.5 |
| 2022-12-29 | CVE-2022-4779 | Path Traversal vulnerability in Elvexys Streamx 6.02.01/6.04.34 StreamX applications from versions 6.02.01 to 6.04.34 are affected by a logic bug that allows to bypass the implemented authentication scheme. StreamX applications using StreamView HTML component with the public web server feature activated are affected. | 9.8 |
| 2022-12-28 | CVE-2022-44564 | Path Traversal vulnerability in Huawei Aslan-Al10 Firmware 11.1.0.10118(C00M06)/11.1.0.118(C00M06)/11.1.0.135(C00M08) Huawei Aslan Children's Watch has a path traversal vulnerability. | 7.8 |
| 2022-12-28 | CVE-2022-38202 | Path Traversal vulnerability in Esri Arcgis Server There is a path traversal vulnerability in Esri ArcGIS Server versions 10.9.1 and below. | 7.5 |
| 2022-12-27 | CVE-2018-25046 | Path Traversal vulnerability in Cloudfoundry Archiver 20141016/20150319/20170223 Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory. | 9.1 |
| 2022-12-27 | CVE-2019-25073 | Path Traversal vulnerability in Goa.Design GOA Improper path sanitization in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory. | 7.5 |
| 2022-12-27 | CVE-2020-36559 | Path Traversal vulnerability in Aahframework AAH Due to improper sanitization of user input, HTTPEngine.Handle allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read. | 7.5 |
| 2022-12-27 | CVE-2020-36560 | Path Traversal vulnerability in Go-Unzip Project Go-Unzip Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory. | 9.1 |
| 2022-12-27 | CVE-2020-36561 | Path Traversal vulnerability in Unzip Project Unzip Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory. | 9.1 |