610 matches found
CVE-2026-57709
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in WP Swings Membership For WooCommerce membership-for-woocommerce allows Path Traversal.This issue affects Membership For WooCommerce: from n/a through = 3.1.0...
The vulnerability of the ColdFusion software platform arises from an incorrect restriction on the path to the restricted directory. This allows attackers to execute arbitrary code.
The vulnerability of the ColdFusion software platform exists due to an incorrect limitation on the path name to the restricted access catalog. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
PT-2026-55504
Name of the Vulnerable Software and Affected Versions Apache Lucene.Net.Replicator versions 4.8.0-beta00005 through 4.8.0-beta00017 Description A path traversal issue exists in the Lucene.Net.Replicator library due to improper input validation and sanitization of filesystem paths. This allows...
CVE-2026-48282
CVE-2026-48282 affects Adobe ColdFusion 2025.9, 2023.20 and earlier. The connected exploit sources describe a path traversal in ColdFusion’s Remote Development Service (RDS) that allows an unauthenticated attacker to read and write arbitrary files via /CFIDE/main/ide.cfm, resulting in Remote Code...
CVE-2025-55017
CVE-2025-55017 is an Apache IoTDB path traversal vulnerability (Improper Limitation of a Pathname to a Restricted Directory). Affected versions are IoTDB 2.0.0–2.0.5 and 1.0.0–1.3.5; fixed in IoTDB 2.0.6 and 1.3.6. The issue allows unauthorized access to restricted directories via path traversal,...
EUVD-2025-210247
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in EMV JobCareer allows Path Traversal. This issue affects JobCareer: from n/a through 7.3...
CVE-2026-45454
Improper limitation of a pathname to a restricted directory 'path traversal' in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...
CVE-2026-34657 CAI Content Credentials | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in an arbitrary file system write. An attacker could leverage this vulnerability to write to...
CVE-2026-34657
CAI Content Credentials affects [email protected], c2pa-v0.80.1 and earlier. It is an Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) that could allow arbitrary file write. Exploitation requires user interaction: a victim must extract a crafted file. Impact is limited to...
EUVD-2026-35832
ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to access unauthorized files or directories...
CVE-2026-47932
CVE-2026-47932 — Path Traversal in Adobe ColdFusion affects ColdFusion versions 2023.19, 2025.8 and earlier. The issue is an improper limitation of a pathname to a restricted directory, enabling a security feature bypass and potential access to unauthorized files/directories. Exploitation require...
EUVD-2026-35538
Improper limitation of a pathname to a restricted directory 'path traversal' in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...
EUVD-2026-35504
Improper limitation of a pathname to a restricted directory 'path traversal' in Microsoft Azure Kubernetes Service allows an authorized attacker to execute code locally...
CVE-2026-45454
Improper limitation of a pathname to a restricted directory 'path traversal' in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...
CVE-2026-32193
Improper limitation of a pathname to a restricted directory 'path traversal' in Microsoft Azure Kubernetes Service allows an authorized attacker to execute code locally...
PT-2026-47964
Name of the Vulnerable Software and Affected Versions GitHub Copilot affected versions not specified Visual Studio Code affected versions not specified Description Improper limitation of a pathname to a restricted directory, known as path traversal, allows an unauthorized attacker to bypass...
PT-2026-47941
Name of the Vulnerable Software and Affected Versions Microsoft Office SharePoint affected versions not specified Description An improper limitation of a pathname to a restricted directory, known as path traversal, allows an authorized attacker to execute arbitrary code over a network...
PT-2026-45466
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Mamunur Rashid Classified Listing allows Path Traversal. This issue affects Classified Listing: from n/a through 5.3.8...
EUVD-2026-32189
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in e4jvikwp VikBooking Hotel Booking Engine & PMS vikbooking allows Path Traversal.This issue affects VikBooking Hotel Booking Engine & PMS: from n/a through = 1.8.9...
wireshark: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Wireshark
A flaw was found in Wireshark. A path traversal can occur when a malformed configuration profile is imported, resulting in a denial of service or potentially in code execution...