Weaknesses of type CWE-22
4,793 resultsCVE-2025-30895HIGHWordPress WpEvently Plugin <= 4.2.9 - PHP Object Injection vulnerabilityEPSS 0.8%CVE-2024-8898MEDIUMPath Traversal in parisneo/lollms-webuiEPSS 0.8%CVE-2024-11215MEDIUMPath traversal vulnerability in EasyPHPEPSS 0.7%CVE-2023-29986MEDIUMspring-boot-actuator-logview 0.2.13 allows Directory Traversal to sibling directories via LogViewEndpoint.view.EPSS 0.7%CVE-2024-8706MEDIUMJFinalCMS com.cms.util.TemplateUtils update path traversalEPSS 0.7%CVE-2024-23182HIGHRelative path traversal vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0EPSS 0.7%CVE-2020-8144—The UniFi Video Server v3.9.3 and prior (for Windows 7/8/10 x64) web interface Firmware Update functionality, under certain circumstances, dEPSS 0.7%CVE-2026-20181CRITICALCisco Identity Services Engine Remote Code Execution VulnerabilityEPSS 0.7%CVE-2023-26101HIGHIn Progress Flowmon Packet Investigator before 12.1.0, a Flowmon user with access to Flowmon Packet Investigator could leverage a path-traveEPSS 0.7%CVE-2023-40160LOWDirectory traversal vulnerability exists in Mailing List Search CGI (pmmls.exe) included in A.K.I Software's PMailServer/PMailServer2 producEPSS 0.7%CVE-2024-21799MEDIUMPath traversal for some Intel(R) Extension for Transformers software before version 1.5 may allow an authenticated user to potentially enablEPSS 0.7%CVE-2023-27055HIGHAver Information Inc PTZApp2 v20.01044.48 allows attackers to access sensitive files via a crafted GET request.EPSS 0.7%CVE-2023-22772MEDIUMAuthenticated Path Traversal in ArubaOS Web-based Management Interface Allows for Arbitrary File DeletionEPSS 0.7%CVE-2026-4944HIGHHardcoded trust_remote_code=True in vllm-project/vllm Bypasses User Security ControlEPSS 0.7%CVE-2024-13914HIGHFile Manager Advanced Shortcode <= Multiple Versions - Authenticated (Administrator+) Local JavaScript File Inclusion via ShortcodeEPSS 0.7%CVE-2023-31131HIGHArbitrary File Write when Extracting Tarballs in greenplum-dbEPSS 0.7%CVE-2024-53490HIGHFavorites-web 1.3.0 favorites-web has a directory traversal vulnerability in SecurityFilter.java.EPSS 0.7%CVE-2005-10002MEDIUMalmosteffortless secure-files Plugin secure-files.php sf_downloads path traversalEPSS 0.7%CVE-2025-48370LOWauth-js Vulnerable to Insecure Path Routing from Malformed User InputEPSS 0.7%CVE-2026-25475MEDIUMOpenClaw Vulnerable to Local File Inclusion via MEDIA: Path ExtractionEPSS 0.7%