Contact Privacy DMCA

Robuta
https://advisories.gitlab.com/npm/jspdf/CVE-2025-68428/ jsPDF has Local File Inclusion/Path Traversal vulnerability | GitLab Advisory Database (GLAD) CVE-2025-68428 jsPDF has Local File Inclusion/Path Traversal vulnerability: User control of the first argument of the loadFile method in the node.js build... local file inclusionpath traversal https://www.sentinelone.com/vulnerability-database/cve-2024-48248/ CVE-2024-48248: NAKIVO Backup Path Traversal Vulnerability path traversalcvenakivobackupvulnerability https://www.sentinelone.com/vulnerability-database/cve-2025-48130/ CVE-2025-48130: Spice Blocks Path Traversal Vulnerability CVE-2025-48130 is a path traversal vulnerability in Spice Blocks plugin. Learn about its impact, affected versions, and mitigation methods. path traversalcvespiceblocksvulnerability https://www.levelblue.com/blogs/spiderlabs-blog/stonefly-sc-vulnerability-disclosure/?collection=5b76135e-4196-415b-ab1d-f42b6f0abb10&parentUrl=/en/insights/articles/how-to-make-the-most-of-voluntary-benefit-plans-in-the-us Command Injection and Path Traversal in StoneFly Storage Concentrator CVE-2024-30213, CVE-2024-31947: Blind Operating System Command Injection and Path Traversal in StoneFly Storage Concentrator command injectionpath traversalstoneflystorageconcentrator https://www.miggo.io/vulnerability-database/cve/CVE-2023-1177 CVE-2023-1177: MLflow Server Path Traversal | Miggo MLflow path traversal in server and ui CLIs grants remote attackers arbitrary file download from the host via a malicious request to the artifacts API. path traversalcvemlflowserver https://intruceptlabs.com/2025/08/winrar-zero-day-path-traversal-flaw-actively-exploited-to-code-execution/ WinRAR Zero-Day Path Traversal Flaw Actively Exploited to Code Execution - Intrucept Aug 11, 2025 - Security advisory: A zero-day path traversal vulnerability has been discovered in the Windows version of a popular file archiver utility, WinRAR. The... zero daypath traversal https://www.sentinelone.com/vulnerability-database/cve-2026-33227/ CVE-2026-33227: Apache ActiveMQ Path Traversal Flaw CVE-2026-33227 is a path traversal vulnerability in Apache ActiveMQ. Learn about its impact, affected versions, and mitigation methods. apache activemqpath traversalcveflaw https://www.confoo.ca/en/2026/session/csrf-are-back-with-client-side-path-traversal CSRF are back with Client-Side Path Traversal | ConFoo.ca FullStack Conference for developers February 25-27, 2026 in Montreal, Canada. client sidepath traversalcsrfbackconfoo https://advisories.gitlab.com/golang/github.com/hashicorp/go-getter/CVE-2022-30322/ Relative Path Traversal | GitLab Advisory Database (GLAD) CVE-2022-30322 Relative Path Traversal: HashiCorp go-getter through 2.0.2 does not safely perform downloads (issue 2 of 3). path traversalrelativegitlabadvisorydatabase https://advisories.gitlab.com/golang/github.com/arduino/arduino-create-agent/CVE-2023-43803/ Arduino Create Agent path traversal - arbitrary file deletion vulnerability | GitLab Advisory... CVE-2023-43803 Arduino Create Agent path traversal - arbitrary file deletion vulnerability: Arduino Create Agent is a package to help manage Arduino... create agentpath traversalfile deletionarduino https://advisories.gitlab.com/composer/froxlor/froxlor/CVE-2023-0316/ Path Traversal: '\..\filename' | GitLab Advisory Database (GLAD) CVE-2023-0316 Path Traversal: '\..\filename': Path Traversal: '..\filename' in GitHub repository froxlor/froxlor prior to 2.0.0. path traversalfilenamegitlabadvisorydatabase https://www.sentinelone.com/vulnerability-database/cve-2025-32294/ CVE-2025-32294: Oxpitan Path Traversal Vulnerability CVE-2025-32294 is a path traversal vulnerability in Oxpitan allowing PHP local file inclusion. Learn about its impact, affected versions, and mitigation... path traversalcvevulnerability https://advisories.gitlab.com/swift/github.com/weichsel/zipfoundation/CVE-2023-39138/ Path traversal in ZIPFoundation | GitLab Advisory Database (GLAD) CVE-2023-39138 Path traversal in ZIPFoundation: An issue in ZIPFoundation v0.9.16 allows attackers to execute a path traversal via extracting a crafted zip... path traversalgitlabadvisorydatabaseglad https://cvefeed.io/vuln/detail/CVE-2009-3053 CVE-2009-3053 - Agora Joomla! Path Traversal Valeuth Apr 23, 2026 - Directory traversal vulnerability in the Agora (com_agora) component 3.0.0b for Joomla! allows remote attackers to include and execute arbitrary local files... path traversalcveagorajoomla https://research.jfrog.com/vulnerabilities/archiver-zip-slip/ mholt/archiver Zip Slip Path Traversal | - JFrog Security Research CVE-2025-3445 High severity. mholt/archiver Zip Slip Path Traversal path traversalarchiverzipslipjfrog https://advisories.gitlab.com/pypi/pghoard/CVE-2024-56142/ PGHoard Path Traversal vulnerability | GitLab Advisory Database (GLAD) CVE-2024-56142 PGHoard Path Traversal vulnerability: A vulnerability has been discovered that could allow an attacker to acquire disk access with privileges... path traversalvulnerabilitygitlabadvisorydatabase https://advisories.gitlab.com/maven/org.glassfish.main.web/web/CVE-2022-2712/ Relative Path Traversal | GitLab Advisory Database (GLAD) CVE-2022-2712 Relative Path Traversal: In Eclipse GlassFish versions 5.1.0 to 6.2.5, there is a vulnerability in relative path traversal because it does not... path traversalrelativegitlabadvisorydatabase https://advisories.gitlab.com/pypi/diffoscope/CVE-2024-25711/ diffoscope Path Traversal vulnerability | GitLab Advisory Database (GLAD) CVE-2024-25711 diffoscope Path Traversal vulnerability: diffoscope before 256 allows directory traversal via an embedded filename in a GPG file. Contents of... path traversaldiffoscopevulnerabilitygitlabadvisory https://advisories.gitlab.com/composer/magento/community-edition/CVE-2025-49559/ Magento vulnerable to path traversal | GitLab Advisory Database (GLAD) CVE-2025-49559 Magento vulnerable to path traversal: Magento versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and earlier are... path traversalmagentovulnerablegitlabadvisory https://www.sentinelone.com/vulnerability-database/cve-2026-3666/ CVE-2026-3666: wpForo Forum Path Traversal Vulnerability CVE-2026-3666 is a path traversal vulnerability in wpForo Forum for WordPress. Learn about its impact, affected versions, and mitigation methods. wpforo forumpath traversalcvevulnerability https://docs.gitlab.com/ja-jp/user/application_security/api_security_testing/checks/path_traversal_check/ Path traversal | GitLab Docs GitLab product documentation. path traversalgitlabdocs https://advisories.gitlab.com/golang/github.com/openshift/console/CVE-2024-7631/ OpenShift Console Has a Path Traversal Vulnerability | GitLab Advisory Database (GLAD) CVE-2024-7631 OpenShift Console Has a Path Traversal Vulnerability: A flaw was found in the OpenShift Console, an endpoint for plugins to serve resources in... path traversalopenshiftconsole https://advisories.gitlab.com/npm/@janhq/core/CVE-2024-36858/ Jan path traversal vulnerability | GitLab Advisory Database (GLAD) CVE-2024-36858 Jan path traversal vulnerability: An arbitrary file upload vulnerability in the /v1/app/writeFileSync interface of Jan v0.4.12 allows attackers... path traversaljanvulnerabilitygitlabadvisory https://advisories.gitlab.com/golang/github.com/siyuan-note/siyuan/kernel/CVE-2026-32749/ SiYuan importSY/importZipMd: path traversal via multipart filename enables arbitrary file write |... CVE-2026-32749 SiYuan importSY/importZipMd: path traversal via multipart filename enables arbitrary file write: POST /api/import/importSY and POST... path traversal https://www.sentinelone.com/vulnerability-database/cve-2025-49448/ CVE-2025-49448: FW Food Menu Path Traversal Flaw CVE-2025-49448 is a path traversal vulnerability in FW Food Menu plugin. Learn about its impact, affected versions, and mitigation methods. food menupath traversalcvefwflaw https://advisories.gitlab.com/pypi/zenml/CVE-2025-8406/ ZenML is vulnerable to Path Traversal through its `PathMaterializer` class | GitLab Advisory... CVE-2025-8406 ZenML is vulnerable to Path Traversal through its `PathMaterializer` class: ZenML version 0.83.1 is affected by a path traversal vulnerability in... path traversal https://www.sentinelone.com/vulnerability-database/cve-2026-0976/ CVE-2026-0976: Keycloak Path Traversal Vulnerability CVE-2026-0976 is a path traversal vulnerability in Keycloak. Learn about its impact, affected versions, and mitigation methods to secure your systems. path traversalcvekeycloakvulnerability https://www.incibe.es/en/incibe-cert/notices/aviso/relative-path-traversal-setelsa-security-conacwin Relative path traversal in Setelsa Security ConacWin CB | INCIBE-CERT | INCIBE INCIBE has coordinated the publication of a vulnerability affecting Setelsa Security ConacWin CB, an a path traversalrelativesecuritycbincibe https://advisories.gitlab.com/pypi/praisonaiagents/CVE-2026-40152/ PraisonAIAgents: Path Traversal via Unvalidated Glob Pattern in list_files Bypasses Workspace... CVE-2026-40152 PraisonAIAgents: Path Traversal via Unvalidated Glob Pattern in list_files Bypasses Workspace Boundary: The list_files() tool in FileTools... path traversal https://securityvulnerability.io/vulnerability/CVE-2025-34028 CVE-2025-34028 : Path Traversal Vulnerability in Commvault Command Center by Commvault Feb 26, 2026 - A path traversal flaw in Commvault Command Center allows ZIP file uploads leading to Remote Code Execution. Learn about CVE-2025-34028. path traversalcommand centercve https://securityvulnerability.io/vulnerability/CVE-2024-13181 CVE-2024-13181 : Path Traversal Vulnerability in Ivanti Avalanche Software Jan 17, 2025 - Remote attackers can exploit a path traversal vulnerability in Ivanti Avalanche, compromising system security. Learn more about CVE-2024-13181. path traversalcvevulnerabilityivantiavalanche https://www.sentinelone.com/vulnerability-database/cve-2026-35356/ CVE-2026-35356: uutils coreutils Path Traversal Flaw CVE-2026-35356 is a path traversal vulnerability in uutils coreutils install utility. Learn about its impact, affected versions, and mitigation methods. path traversalcvecoreutilsflaw https://s4e.io/tools/belkin-n150-router-1-00-08-1-00-09-directory-traversal-cve-2014-2962 CVE-2014-2962 scanner - Path Traversal vulnerability in Belkin N150 F9K1009 Detects 'Path Traversal' vulnerability in Belkin N150 F9K1009 affects v. 1. path traversalcvescanner https://www.sentinelone.com/vulnerability-database/cve-2026-39306/ CVE-2026-39306: PraisonAI Path Traversal Vulnerability CVE-2026-39306 is a path traversal vulnerability in PraisonAI. Learn about its impact, affected versions, and mitigation methods. path traversalcvevulnerability https://www.sentinelone.com/vulnerability-database/cve-2026-6903/ CVE-2026-6903: LabOne Web Server Path Traversal Flaw CVE-2026-6903 is a path traversal vulnerability in LabOne Web Server. Learn about its impact, affected versions, and mitigation methods. web serverpath traversalcvelaboneflaw https://www.sentinelone.com/vulnerability-database/cve-2026-35446/ CVE-2026-35446: LORIS Path Traversal Vulnerability CVE-2026-35446 is a path traversal vulnerability in LORIS (Longitudinal Online Research and Imaging System). Learn about its impact, affected versions, and... path traversalcvelorisvulnerability https://www.sentinelone.com/vulnerability-database/cve-2026-34783/ CVE-2026-34783: Ferret Path Traversal Vulnerability CVE-2026-34783 is a path traversal vulnerability in Ferret's IO::FS::WRITE function. Learn about its impact, affected versions, and mitigation methods. path traversalcveferretvulnerability https://ranakhalil.com/courses/directory-traversal/lectures/52039996 Lab #2 File path traversal, traversal sequences blocked with absolute Learn how to find, exploit and defend against Directory Traversal vulnerabilities. path traversallabfilesequencesblocked https://research.averlon.ai/vulnerability-intelligence/cve/CVE-2020-35883 CVE-2020-35883: Path traversal in mozwire - Averlon Vulnerability Intelligence An issue was discovered in the mozwire crate through 2020-08-18 for Rust. A ../ directory-traversal situation allows overwriting local files that have .conf at... path traversalcvevulnerabilityintelligence https://www.sentinelone.com/vulnerability-database/cve-2025-13282/ CVE-2025-13282: Cht Tenderdoctransfer Path Traversal Flaw CVE-2025-13282 is a path traversal vulnerability in Cht Tenderdoctransfer. Learn about its impact, affected versions, and mitigation methods. path traversalcvechtflaw https://advisories.gitlab.com/pypi/mage-ai/CVE-2024-45190/ Mage AI Path Traversal vulnerability | GitLab Advisory Database (GLAD) CVE-2024-45190 Mage AI Path Traversal vulnerability: Mage AI allows remote users with the "Viewer" role to leak arbitrary files from the Mage server due to a... ai pathmagetraversalvulnerabilitygitlab https://advisories.gitlab.com/composer/topthink/framework/CVE-2025-50706/ ThinkPHP Path Traversal Vulnerability | GitLab Advisory Database (GLAD) CVE-2025-50706 ThinkPHP Path Traversal Vulnerability: An issue in ThinkPHP Framework v.5.1 allows a remote attacker to execute arbitrary code via the... path traversalthinkphpvulnerabilitygitlabadvisory https://advisories.gitlab.com/golang/github.com/yi-ge/unzip/CVE-2020-36561/ Unzip vulnerable to path traversal | GitLab Advisory Database (GLAD) CVE-2020-36561 Unzip vulnerable to path traversal: Due to improper path santization, archives containing relative file paths can cause files to be written (or... path traversalunzipvulnerablegitlabadvisory https://advisories.gitlab.com/maven/org.apache.streampark/streampark-common_2.12/CVE-2022-45802/ Apache StreamPark Path Traversal vulnerability | GitLab Advisory Database (GLAD) CVE-2022-45802 Apache StreamPark Path Traversal vulnerability: Streampark allows any users to upload a jar as application, but there is no mandatory... path traversalapachevulnerabilitygitlabadvisory https://neutsec.io/advisories/cve-2025-64075/ Authentcation bypass via path traversal | Neutrino Security path traversalbypassvianeutrinosecurity https://www.sentinelone.com/vulnerability-database/cve-2024-10834/ CVE-2024-10834: DB-GPT Path Traversal Vulnerability CVE-2024-10834 is a path traversal vulnerability in DB-GPT 0.6.0. Learn about its impact, affected versions, and mitigation methods. path traversalcvedbgptvulnerability https://www.devsecopsnow.com/path-traversal/ What is path traversal? Meaning, Examples, Use Cases & Complete Guide - DevSecOps Now!!! what is path https://advisories.gitlab.com/pypi/gdown/GHSA-76hw-p97h-883f/ gdown Affected by Arbitrary File Write via Path Traversal in gdown.extractall | GitLab Advisory... GHSA-76hw-p97h-883f gdown Affected by Arbitrary File Write via Path Traversal in gdown.extractall: The gdown library (tested on v5.2.1) is vulnerable to a Path... https://update.cybetower.swiss/cve-2025-26876-codemanas-search-with-typesense-plugin-up-to-2-0-8-on-wordpress-path-traversal/ CVE-2025-26876 | CodeManas Search with Typesense Plugin up to 2.0.8 on WordPress path traversal -... Feb 25, 2025 - This vulnerability is uniquely identified as CVE-2025-26876. It is possible to initiate the attack remotely. There is no exploit available. https://www.endorlabs.com/vulnerability/cve-2026-28482 Endor Patches | CVE-2026-28482, OpenClaw's unsanitized session ID enables path traversal in... https://advisories.gitlab.com/pypi/dbt-common/GHSA-w75w-9qv4-j5xj/ dbt-common's commonprefix() doesn't protect against path traversal | GitLab Advisory Database (GLAD) GHSA-w75w-9qv4-j5xj dbt-common's commonprefix() doesn't protect against path traversal: What kind of vulnerability is it? Who is impacted? A path traversal... https://advisories.gitlab.com/golang/github.com/go-git/go-git/v5/CVE-2023-49569/ Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients |... CVE-2023-49569 Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients: A path traversal vulnerability was discovered in... https://devhub.checkmarx.com/cve-details/cve-2014-4877/ Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') - CVE-2014-4877 -... May 9, 2023 - Absolute path traversal vulnerability in GNU Wget before 1.16, when recursion is enabled, allows remote FTP servers to write to arbitrary files, and... https://advisories.gitlab.com/golang/github.com/jessfraz/pastebinit/CVE-2018-25059/ Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') | GitLab Advisory... CVE-2018-25059 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'): A vulnerability was found in pastebinit up to 0.2.2 and... https://advisories.gitlab.com/npm/coursevault-preview/CVE-2026-35613/ coursevault-preview has a path traversal due to improper base-directory boundary validation |... CVE-2026-35613 coursevault-preview has a path traversal due to improper base-directory boundary validation: coursevault-preview versions prior to 0.1.1 contain... https://aisecurityguard.io/learn/article/critical-path-traversal-in-mcpservergit-cve202568145-analysi Critical Path Traversal in mcp-server-git: CVE-2025-68145 Analysis and Defense | AI Security Guard A critical vulnerability discovered in mcp-server-git versions prior to 2025.12.17 allows attackers to bypass repository access restrictions through path traver https://devhub.checkmarx.com/cve-details/cve-2018-11455/ Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') - CVE-2018-11455 -... https://zerodai.com/en/vulnerabilities/cve/cve-2023-7300 CVE-2023-7300 [HIGH]: Huawei Home Music System has a path traversal vulnerability. Successful... Dec 26, 2024 - Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the music host file to be deleted or t... https://advisories.gitlab.com/gem/yard/CVE-2026-41493/ yard: Possible arbitrary path traversal and file access via yard server | GitLab Advisory Database... https://advisories.gitlab.com/nuget/jellyfin.controller/CVE-2023-30626/ Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') | GitLab Advisory... CVE-2023-30626 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'): Jellyfin is a free-software media system. Versions starting with... https://www.sentinelone.com/vulnerability-database/cve-2025-48124/ CVE-2025-48124: WooCommerce Price Changer Path Traversal CVE-2025-48124 is a path traversal vulnerability in Spreadsheet Price Changer for WooCommerce. Learn about its impact, affected versions, and mitigation. cvewoocommercepricechangerpath https://devhub.checkmarx.com/cve-details/cve-2010-4801/ Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') - CVE-2010-4801 -... May 9, 2023 - Directory traversal vulnerability in admin/updatelist.php in BaconMap 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot... https://devhub.checkmarx.com/cve-details/cve-2023-24804/ Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') - CVE-2023-24804 -... May 9, 2023 - The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Prior to version 3.0, the app has an incomplete fix for a path... https://advisories.gitlab.com/npm/@evershop/evershop/CVE-2023-46496/ Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') | GitLab Advisory... CVE-2023-46496 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'): Directory Traversal vulnerability in EverShop NPM versions... https://manpages.ubuntu.com/manpages/xenial/man3/Math::PlanePath::SierpinskiArrowheadCentres.3pm.html Ubuntu Manpage: Math::PlanePath::SierpinskiArrowheadCentres - self-similar triangular path traversal self-similar triangular path traversal ubuntumanpagemathselfsimilar https://advisories.gitlab.com/golang/github.com/montferret/ferret/CVE-2026-34783/ Ferret: Path Traversal in IO::FS::WRITE allows arbitrary file write when scraping malicious... CVE-2026-34783 Ferret: Path Traversal in IO::FS::WRITE allows arbitrary file write when scraping malicious websites: A path traversal vulnerability in Ferret's... https://cvefeed.io/vuln/detail/CVE-2024-12088 CVE-2024-12088 - Rsync: --safe-links option bypass leads to path traversal Apr 14, 2026 - A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server... https://www.sentinelone.com/vulnerability-database/cve-2025-32627/ CVE-2025-32627: Joomsky JS Job Manager Path Traversal CVE-2025-32627 is a path traversal vulnerability in Joomsky JS Job Manager. Learn about its impact, affected versions, and mitigation methods. job managercvejspathtraversal