Weaknesses of type CWE-22
4,790 resultsCVE-2024-34523HIGHAChecker 1.5 allows remote attackers to read the contents of arbitrary files via the download.php path parameter by using Unauthenticated PaEPSS 0.8%CVE-2023-6160LOWLifterLMS <= 7.4.2 - Authenticated(Administrator+) Directory Traversal to Arbitrary CSV File DeletionEPSS 0.8%CVE-2025-54141HIGHViewVC's standalone server exposes arbitrary server filesystem contentEPSS 0.8%CVE-2022-39221HIGHImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') McWebserver Minecraft ModEPSS 0.8%CVE-2025-8343MEDIUMopenviglet shio ShStaticFileAPI.java shStaticFilePreUpload path traversalEPSS 0.8%CVE-2024-54452MEDIUMAn issue was discovered in Kurmi Provisioning Suite before 7.9.0.35 and 7.10.x through 7.10.0.18. A Directory Traversal and Local File IncluEPSS 0.8%CVE-2022-36081HIGHWikmd vulnerable to Local File Enumeration when accessing /listEPSS 0.8%CVE-2022-46154HIGHArbitrary file access in KodExplorerEPSS 0.8%CVE-2026-33076HIGHRoxy-WI vulnerable to path traversal and arbitrary file writingEPSS 0.8%CVE-2023-39964HIGH1Panel O&M management panel has a background arbitrary file reading vulnerabilityEPSS 0.8%CVE-2024-46644MEDIUMeNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via edit_file.EPSS 0.8%CVE-2025-6065CRITICALImage Resizer On The Fly <= 1.1 - Unauthenticated Arbitrary File DeletionEPSS 0.8%CVE-2026-13251HIGHPerfmatters <= 2.6.4 - Unauthenticated Arbitrary File Read via 's' ParameterEPSS 0.8%CVE-2022-44008MEDIUMAn issue was discovered in BACKCLICK Professional 5.9.63. Due to improper validation, arbitrary local files can be retrieved by accessing thEPSS 0.8%CVE-2025-23092HIGHMitel OpenScape Accounting Management through V5 R1.1.0 could allow an authenticated attacker with administrative privileges to conduct a paEPSS 0.8%CVE-2025-3294HIGHWP Editor <= 1.2.9.1 - Authenticated (Administrator+) Directory Traversal to Arbitrary File UpdateEPSS 0.8%CVE-2024-34245MEDIUMAn arbitrary file read vulnerability in DedeCMS v5.7.114 allows authenticated attackers to read arbitrary files by specifying any path in maEPSS 0.8%CVE-2024-46647MEDIUMeNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via upload_files.EPSS 0.8%CVE-2022-1264MEDIUMInductive Automation IgnitionEPSS 0.8%CVE-2025-50348HIGHPHPGurukul Pre-School Enrollment System Project V1.0 is vulnerable to Directory Traversal in update-class-pic.php.EPSS 0.8%