Weaknesses of type CWE-22

4,800 results
CVE-2026-3289MEDIUMSanluan PublicCMS Template Cache Generation TemplateCacheComponent.java saveMetadata path traversalEPSS 0.7%CVE-2026-35392CRITICALgoshs has an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs PUT UploadEPSS 0.7%CVE-2024-55602HIGHPenDoc vulnerable to Arbitrary File Read on updating and downloading templates using Path TraversalEPSS 0.7%CVE-2026-35393CRITICALImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs POST multipart uploadEPSS 0.7%CVE-2026-35471CRITICALImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshsEPSS 0.7%CVE-2025-1543MEDIUMiteachyou Dreamer CMS ueditor-1.4.3.3 path traversalEPSS 0.7%CVE-2023-53907HIGHBludit 3.13.1 Authenticated Arbitrary File Download via Backup PluginEPSS 0.7%CVE-2024-49770HIGHoak's path traversal allows transfer of hidden files within the served root directoryEPSS 0.7%CVE-2025-11746HIGHXStore | Multipurpose WooCommerce Theme <= 9.5.4 - Authenticated (Subscriber+) Local File InclusionEPSS 0.7%CVE-2023-22380MEDIUMPath traversal in GitHub Enterprise Server leading to arbitrary file reading when building a GitHub Pages siteEPSS 0.7%CVE-2026-0963CRITICALImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty ControllerEPSS 0.7%CVE-2023-33310MEDIUMWordPress Unite Gallery Lite plugin <= 1.7.59 - Local File Inclusion vulnerabilityEPSS 0.7%CVE-2025-59352MEDIUMDragonfly allows arbitrary file read and write on a peer machineEPSS 0.7%CVE-2023-25689LOWIBM Security Key Lifecycle Manager information disclosureEPSS 0.7%CVE-2025-10176HIGHThe Hack Repair Guy's Plugin Archiver <= 2.0.4 - Authenticated (Administrator+) Arbitrary File DeletionEPSS 0.7%CVE-2022-31255MEDIUMSUMA/UYUNI directory path traversal vulnerability in CobblerSnipperViewActionEPSS 0.7%CVE-2024-31462MEDIUMLimited file write in Stable-diffusion-webui - GHSL-2024-010EPSS 0.7%CVE-2026-34911HIGHA malicious actor with access to the network and low privileges could exploit a Path Traversal vulnerability found in UniFi OS devices to acEPSS 0.7%CVE-2024-26261CRITICALHgiga OAKlouds - Arbitrary File Read And DeleteEPSS 0.7%CVE-2024-39741MEDIUMIBM Datacap Navigator directory traversalEPSS 0.7%