Vulnerabilities > Relative Path Traversal

DATE CVE VULNERABILITY TITLE RISK
2025-03-14 CVE-2025-2056 The WP Ghost (Hide My WP Ghost) – Security & Firewall plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 5.4.01 via the showFile function.
network
low complexity
CWE-23
7.5
2025-03-11 CVE-2025-26645 Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
network
low complexity
CWE-23
8.8
2025-02-28 CVE-2024-56340 IBM Cognos Analytics 11.2.0 through 11.2.4 FP5 is vulnerable to local file inclusion vulnerability, allowing an attacker to access sensitive files by inserting path traversal payloads inside the deficon parameter.
network
low complexity
CWE-23
6.5
2025-01-14 CVE-2024-32115 Relative Path Traversal vulnerability in Fortinet Fortimanager
A relative path traversal vulnerability [CWE-23] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5 allows a privileged attacker to delete files from the underlying filesystem via crafted HTTP or HTTPs requests.
network
low complexity
fortinet CWE-23
5.5
2024-12-16 CVE-2024-12642 TenderDocTransfer from Chunghwa Telecom has an Arbitrary File Write vulnerability.
network
low complexity
CWE-23
8.1
2024-12-16 CVE-2024-12645 The topm-client from Chunghwa Telecom has an Arbitrary File Read vulnerability.
network
low complexity
CWE-23
6.5
2024-10-11 CVE-2024-6985 Relative Path Traversal vulnerability in Lollms
A path traversal vulnerability exists in the api open_personality_folder endpoint of parisneo/lollms-webui.
local
low complexity
lollms CWE-23
4.4
2024-10-04 CVE-2024-47769 Relative Path Traversal vulnerability in Idurarapp Idurar
IDURAR is open source ERP CRM accounting invoicing software.
network
low complexity
idurarapp CWE-23
7.5
2023-11-14 CVE-2023-5189 Relative Path Traversal vulnerability in Redhat Ansible Automation Platform and Satellite
A path traversal vulnerability exists in Ansible when extracting tarballs.
network
low complexity
redhat CWE-23
6.5
2021-09-13 CVE-2021-40870 Relative Path Traversal vulnerability in Aviatrix Controller
An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922.
network
low complexity
aviatrix CWE-23
critical
9.8