CVE-2026-27305

ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outsi...

PT-2026-32921

ColdFusion | Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' CWE-22 CVE: CVE-2026-27305 PT ID: PT-2026-32921 Vendor: Adobe Product: ColdFusion CVSS: 8.6 Credits: n/a Description: ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of...

CVE-2026-24969

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in designingmedia Instant VA instantva allows Path Traversal.This issue affects Instant VA: from n/a through = 1.0.1...

CVE-2026-22460

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in wpWax FormGent formgent allows Path Traversal.This issue affects FormGent: from n/a through = 1.7.0...

CVE-2025-69097

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in VibeThemes WPLMS wplmsplugin allows Path Traversal.This issue affects WPLMS: from n/a through = 1.9.9.5.4...

CVE-2025-68907

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AivahThemes Hostme v2 hostmev2 allows Path Traversal.This issue affects Hostme v2: from n/a through = 7.0...

CVE-2025-23562

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in pitinca XLSXviewer xlsx-viewer allows Path Traversal.This issue affects XLSXviewer: from n/a through = 2.1.1...

EUVD-2013-0198

Malware in sbrugna...

EUVD-2017-0335

Malware in sbrugna...

EUVD-2021-19702

Malware in sbrugna...

EUVD-2024-35512

Malicious code in bioql PyPI...

EUVD-2025-11533

Malicious code in bioql PyPI...

EUVD-2025-19323

Malicious code in bioql PyPI...

PT-2025-39365

Name of the Vulnerable Software and Affected Versions Saysis Web Portal versions 3.1.9 through 3.2.0 Description A Path Traversal issue exists in Saysis Web Portal. The issue allows unauthorized access due to improper limitation of a pathname to a restricted directory. Recommendations Update to...

The vulnerability of the “Termide Virtual Desktops Connection Manager” software server arises from an improper limitation on the path name to the restricted access catalog, allowing a perpetrator to gain access to any file in the file system.

The vulnerability of the “Termide Virtual Desktops Connection Manager” software complex is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to any file in the file system by...

CVE-2025-47512

CVE-2025-47512 affects WordPress Tainacan plugin versions up to 0.21.14. The issue is an improper pathname limitation that enables path traversal, with Patchstack and CVE listings additionally noting an Arbitrary File Deletion impact. Public references indicate a fix is available in a newer plugi...

CVE-2023-3330

Improper Limitation of a Pathname to a Restricted Directory vulnerability in NEC Corporation Aterm WG2600HP2, WG2600HP, WG2200HP, WG1800HP2, WG1800HP, WG1400HP, WG600HP, WG300HP, WF300HP, WR9500N, WR9300N, WR8750N, WR8700N, WR8600N, WR8370N, WR8175N and WR8170N all versions allows a attacker to...

CVE-1999-0183

Linux implementations of TFTP would allow access to files outside the restricted directory...

CVE-2025-24908

Overview The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '.../...//' doubled triple dot slash sequences that can resolve to a location that is outside of that directory. CWE-35 Description Hitachi Vantara...

CVE-2025-39568

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Arture B.V. StoreContrl Woocommerce storecontrl-wp-connection allows Path Traversal.This issue affects StoreContrl Woocommerce: from n/a through = 4.1.3...