Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-22 (对路径名的限制不恰当(路径遍历)) — Vulnerability Class 3346

3346 vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2019-9886 eClass platform allows user to download arbitrary files without authentication — eclass 7.5 -2019-07-11
CVE-2019-5444 serve-here.js 路径遍历漏洞 — serve-here.js npm module 5.3 -2019-07-10
CVE-2019-10137 spacewalk-proxy 路径遍历漏洞 — spacewalk-proxy 9.8 -2019-07-02
CVE-2019-3737 Dell EMC Avamar Security Update for ADMe Web UI Vulnerability — Avamar 7.5 -2019-06-19
CVE-2019-6754 Foxit Reader和Foxit PhantomPDF 路径遍历漏洞 — Reader 7.8 -2019-06-03
CVE-2019-1818 Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability — Cisco Prime Infrastructure 6.5 -2019-05-16
CVE-2019-1819 Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability — Cisco Prime Infrastructure 6.5 -2019-05-16
CVE-2019-1820 Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability — Cisco Prime Infrastructure 6.5 -2019-05-16
CVE-2019-1717 Cisco Video Surveillance Manager Web-Based Management Interface Information Disclosure Vulnerability — Cisco Video Surveillance Manager 7.5 -2019-05-15
CVE-2019-5438 npm harp模块后置链接漏洞 — harp 6.2 -2019-05-10
CVE-2019-3799 Directory Traversal with spring-cloud-config-server — Spring Cloud Config 6.5 -2019-05-06
CVE-2019-1854 Cisco Expressway Series Directory Traversal Vulnerability — Cisco Expressway 4.3 -2019-05-03
CVE-2019-1836 Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Symbolic Link Path Traversal Vulnerability — Cisco NX-OS Software for Nexus 9000 Series Fabric Switches ACI Mode 7.1 -2019-05-03
CVE-2019-5624 Rapid7 Metasploit Framework Zip Import Directory Traversal — Metasploit Framework 7.3 -2019-04-30
CVE-2019-3902 Mercurial 后置链接漏洞 — mercurial 7.5 -2019-04-22
CVE-2019-1835 Cisco Aironet Series Access Points Directory Traversal Vulnerability — Cisco Aironet Access Point Software 4.4 -2019-04-18
CVE-2019-10242 Eclipse Kura 路径遍历漏洞 — Eclipse Kura 5.3 -2019-04-09
CVE-2019-3880 Samba 路径遍历漏洞 — samba 4.3 -2019-04-09
CVE-2014-5436 Honeywell International Experion PKS 路径遍历漏洞 — Experion PKS 7.5 -2019-04-08
CVE-2019-5423 http-live-simulator 路径遍历漏洞 — http-live-simulator 7.5 -2019-04-03
CVE-2019-5418 Action View 信息泄露漏洞 — https://github.com/rails/rails 7.5 -2019-03-27
CVE-2019-3828 Ansible fetch module 路径遍历漏洞 — Ansible 3.2 -2019-03-27
CVE-2019-1765 Cisco IP Phone 8800 Series Path Traversal Vulnerability — Cisco Wireless IP Phone 8821 and 8821-EX 6.5 -2019-03-22
CVE-2019-5416 localhost-now npm package 安全漏洞 — localhost-now 7.5 -2019-03-17
CVE-2019-3816 Openwsman 路径遍历漏洞 — openwsman 7.5 -2019-03-14
CVE-2019-3474 Path traversal vulnerability in Filr web application — Filr 6.5 -2019-02-20
CVE-2018-16479 http-live-simulator 路径遍历漏洞 — http-live-simulator 7.5 -2019-02-01
CVE-2018-16482 node module mcstatic 路径遍历漏洞 — mcstatic 7.5 -2019-02-01
CVE-2018-16485 m-server 路径遍历漏洞 — m-server 7.5 -2019-02-01
CVE-2018-19003 多款GE产品路径遍历漏洞 — GE Mark VIe, EX2100e, EX2100e_Reg, and LS2100e 7.5 -2018-12-14

Vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)) represent 3346 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.