• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-22

CVE-2022-25856

February 23, 2023 by godfreyd94

The package github.com/argoproj/argo-events/sensors/artifacts before 1.7.1 are vulnerable to Directory Traversal in the (g *GitArtifactReader).Read() API in git.go. This could allow arbitrary file reads if the GitArtifactReader is provided a pathname containing a symbolic link or an implicit directory name such as …

CVE-2022-25882

February 23, 2023 by godfreyd94

Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory, for example “../../../etc/passwd”

CVE-2022-25634

February 23, 2023 by godfreyd94

Qt through 5.15.8 and 6.x through 6.2.3 can load system library files from an unintended working directory.

CVE-2022-2554

February 23, 2023 by godfreyd94

The Enable Media Replace WordPress plugin before 4.0.0 does not ensure that renamed files are moved to the Upload folder, which could allow high privilege users such as admin to move them outside to the web root directory via a path traversal attack for example

CVE-2022-2557

February 23, 2023 by godfreyd94

The Team WordPress plugin before 4.1.2 contains a file which could allow any authenticated users to download arbitrary files from the server via a path traversal vector. Furthermore, the file will also be deleted after its content is returned to the user

CVE-2022-25591

February 23, 2023 by godfreyd94

BlogEngine.NET v3.3.8.0 was discovered to contain an arbitrary file deletion vulnerability which allows attackers to delete files within the web server root directory via a crafted HTTP request.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 484
  • Go to page 485
  • Go to page 486
  • Go to page 487
  • Go to page 488
  • Interim pages omitted …
  • Go to page 514
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE