• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-22

CVE-2020-13355

February 26, 2023 by

An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14. A path traversal is found in LFS Upload that allows attacker to overwrite certain specific paths on the server. Affected versions are: >=8.14, =13.4, =13.5, <13.5.2.

CVE-2020-13227

February 26, 2023 by

An issue was discovered in Sysax Multi Server 6.90. An attacker can determine the username (under which the web server is running) by triggering an invalid path permission error. This bypasses the fakepath protection mechanism.

CVE-2020-13158

February 26, 2023 by

Artica Proxy before 4.30.000000 Community Edition allows Directory Traversal via the fw.progrss.details.php popup parameter.

CVE-2020-13093

February 26, 2023 by

iSpyConnect.com Agent DVR before 2.7.1.0 allows directory traversal.

CVE-2020-12851

February 26, 2023 by

Pydio Cells 2.0.4 allows an authenticated user to write or overwrite existing files in another user’s personal and cells folders (repositories) by uploading a custom generated ZIP file and leveraging the file extraction feature present in the web application. The extracted files will be placed in the targeted user folders.

CVE-2020-12827

February 26, 2023 by

MJML prior to 4.6.3 contains a path traversal vulnerability when processing the mj-include directive within an MJML document.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 241
  • Go to page 242
  • Go to page 243
  • Go to page 244
  • Go to page 245
  • Interim pages omitted …
  • Go to page 514
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE