Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-19 | CVE-2023-0126 | Path Traversal vulnerability in Sonicwall Sma1000 Firmware 12.4.2 Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated attacker to access arbitrary files and directories stored outside the web root directory. | 7.5 |
| 2023-01-18 | CVE-2023-0290 | Path Traversal vulnerability in Rapid7 Velociraptor Rapid7 Velociraptor did not properly sanitize the client ID parameter to the CreateCollection API, allowing a directory traversal in where the collection task could be written. | 4.3 |
| 2023-01-18 | CVE-2020-36651 | Path Traversal vulnerability in Nodeserver Project Nodeserver A vulnerability has been found in youngerheart nodeserver and classified as critical. | 7.5 |
| 2023-01-17 | CVE-2022-43975 | Path Traversal vulnerability in GE MS 3000 Firmware An issue was discovered in FC46-WebBridge on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. | 7.5 |
| 2023-01-15 | CVE-2016-15019 | Path Traversal vulnerability in Jekbox Project Jekbox A vulnerability was found in tombh jekbox. | 7.5 |
| 2023-01-13 | CVE-2022-42136 | Path Traversal vulnerability in Mailenable Authenticated mail users, under specific circumstances, could add files with unsanitized content in public folders where the IIS user had permission to access. | 8.8 |
| 2023-01-13 | CVE-2022-45299 | Path Traversal vulnerability in Webbrowser Project Webbrowser An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL. | 9.8 |
| 2023-01-13 | CVE-2022-3782 | Path Traversal vulnerability in Redhat Keycloak 20.0.2 keycloak: path traversal via double URL encoding. | 9.1 |
| 2023-01-13 | CVE-2022-42280 | Path Traversal vulnerability in Nvidia BMC NVIDIA BMC contains a vulnerability in SPX REST auth handler, where an un-authorized attacker can exploit a path traversal, which may lead to authentication bypass. | 7.8 |
| 2023-01-11 | CVE-2022-4885 | Path Traversal vulnerability in Jefferson Project Jefferson 0.3 A vulnerability has been found in sviehb jefferson up to 0.3 and classified as critical. | 5.9 |