Weaknesses of type CWE-22

4,794 results
CVE-2024-1594HIGHLocal File Read via Path Traversal in mlflow/mlflowEPSS 0.7%CVE-2026-37531CRITICALAGL app-framework-main thru 17.1.12 contains a Zip Slip path traversal vulnerability (CWE-22) combined with a TOCTOU race condition (CWE-367EPSS 0.7%CVE-2023-29104MEDIUMA vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC716 (All versiEPSS 0.7%CVE-2026-33929MEDIUMApache PDFBox Examples: Path Traversal in PDFBox ExtractEmbeddedFiles Example CodeEPSS 0.7%CVE-2025-6167MEDIUMthemanojdesai python-a2a api.py create_workflow path traversalEPSS 0.7%CVE-2023-32177HIGHVIPRE Antivirus Plus DeleteHistoryFile Directory Traversal Local Privilege Escalation VulnerabilityEPSS 0.7%CVE-2025-66051MEDIUMPath traversal in Vivotek IP7137 camerasEPSS 0.7%CVE-2025-25652HIGHIn Eptura Archibus 2024.03.01.109, the "Run script" and "Server File" components of the "Database Update Wizard" are vulnerable to directoryEPSS 0.7%CVE-2026-55607HIGHClaude Code: Sandbox Escape via Git Worktree Path Confusion Allows Unsandboxed Code ExecutionEPSS 0.7%CVE-2023-32176HIGHVIPRE Antivirus Plus SetPrivateConfig Directory Traversal Local Privilege Escalation VulnerabilityEPSS 0.7%CVE-2026-11420CRITICALPath Traversal in Altium Enterprise Server NIS Allows Unauthenticated Arbitrary File Write and File ReadEPSS 0.7%CVE-2025-2193MEDIUMMRCMS org.marker.mushroom.controller.FileController delete.do delete path traversalEPSS 0.7%CVE-2023-22776MEDIUMAuthenticated Remote Path Traversal in ArubaOS Command Line Interface Allows for Arbitrary File ReadEPSS 0.7%CVE-2025-66429HIGHAn issue was discovered in cPanel 110 through 132. A directory traversal vulnerability within the Team Manager API allows for overwrite of aEPSS 0.7%CVE-2025-25295HIGHLabel Studio has a Path Traversal Vulnerability via image FieldEPSS 0.7%CVE-2025-24611MEDIUMWordPress Export All Posts, Products, Orders, Refunds & Users Plugin <= 2.9 - Arbitrary File Read vulnerabilityEPSS 0.7%CVE-2025-69194HIGHWget2: arbitrary file write via metalink path traversal in gnu wget2EPSS 0.7%CVE-2024-25659HIGHIn Infinera TNMS (Transcend Network Management System) 19.10.3, an insecure default configuration of the internal SFTP server on Linux serveEPSS 0.7%CVE-2025-26615CRITICALPath Traversal endpoint 'examples.php' parameter 'src' in WeGIAEPSS 0.7%CVE-2022-43748MEDIUMImproper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in file operation management in Synology PrestoEPSS 0.7%