CVE-2024-52449 20 Nov 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Navneil Naicer Bootscraper allows PHP Local File Inclu... Read more ➔
CVE-2024-52448 20 Nov 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WebCodingPlace Ultimate Classified Listings allows PHP... Read more ➔
CVE-2024-52444 20 Nov 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WPOPAL Opal Woo Custom Product Variation allows Path T... Read more ➔
CVE-2024-52600 19 Nov 2024
Statmatic is a Laravel and Git powered content management system (CMS). Prior to version 5.17.0, assets uploaded with appropriately crafted filenames... Read more ➔
CVE-2024-47820 18 Nov 2024
MarkUs, a web application for the submission and grading of student assignments, is vulnerable to path traversal in versions prior to 2.4.8. Authentic... Read more ➔
CVE-2020-26071 (v3: 8.4) 18 Nov 2024
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected... Read more ➔
CVE-2024-41971 (v3: 8.1) 18 Nov 2024
A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a DoS and data loss. Read more ➔
CVE-2024-9935 (v3: 7.5) 16 Nov 2024
The PDF Generator Addon for Elementor Page Builder plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.7.5 vi... Read more ➔
CVE-2024-11239 15 Nov 2024
A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This vulnerability affects the function deleteFile of the file /s... Read more ➔
CVE-2024-11238 15 Nov 2024
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function delPreviewFile of the file /sys/ui/s... Read more ➔
CVE-2024-42499 15 Nov 2024
Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in FitNesse releases prior to 20241026. If this vulnerabil... Read more ➔
CVE-2024-52396 14 Nov 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in realmag777 WOLF allows Path Traversal.This issue affec... Read more ➔
CVE-2024-52371 14 Nov 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in DonnellC Global Gateway e4 | Payeezy Gateway.This issu... Read more ➔
CVE-2024-11210 14 Nov 2024
A vulnerability was found in EyouCMS 1.51. It has been rated as critical. This issue affects the function editFile of the file application/admin/logic... Read more ➔
CVE-2024-11215 14 Nov 2024
Absolute path traversal (incorrect restriction of a path to a restricted directory) vulnerability in the EasyPHP web server, affecting version 14.1. T... Read more ➔
CVE-2024-47916 14 Nov 2024
Boa web server - CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Read more ➔
CVE-2024-45253 14 Nov 2024
Avigilon – CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Read more ➔
CVE-2024-21799 13 Nov 2024
Path traversal for some Intel(R) Extension for Transformers software before version 1.5 may allow an authenticated user to potentially enable escalati... Read more ➔
CVE-2024-52292 13 Nov 2024
Craft is a content management system (CMS). The dataUrl function can be exploited if an attacker has write permissions on system notification template... Read more ➔
CVE-2024-52291 13 Nov 2024
Craft is a content management system (CMS). A vulnerability in CraftCMS allows an attacker to bypass local file system validation by utilizing a doubl... Read more ➔
CVE-2024-52293 13 Nov 2024
Craft is a content management system (CMS). Prior to 4.12.2 and 5.4.3, Craft is missing normalizePath in the function FileHelper::absolutePath could l... Read more ➔
CVE-2024-11150 (v3: 9.8) 13 Nov 2024
The WordPress User Extra Fields plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_t... Read more ➔
CVE-2024-32117 12 Nov 2024
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiManager version 7.4.0 throug... Read more ➔
CVE-2024-50559 (v3: 4.3) 12 Nov 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK610... Read more ➔
CVE-2024-46888 (v3: 9.9) 12 Nov 2024
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). The affected application does not properly sanitize user provi... Read more ➔