Weaknesses of type CWE-22
4,804 resultsCVE-2024-32807HIGHWordPress Brevo for WooCommerce plugin <= 4.0.17 - Arbitrary File Download and Deletion vulnerabilityEPSS 0.6%CVE-2024-45262HIGHAn issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The params parameter in theEPSS 0.6%CVE-2025-39664HIGHPath-Traversal in report schedulerEPSS 0.6%CVE-2025-6278MEDIUMUpsonic server.py os.path.join path traversalEPSS 0.6%CVE-2014-125068MEDIUMsaxman maps-js-icoads http-server.js path traversalEPSS 0.6%CVE-2024-28171HIGHDelta Electronics DIAEnergie Path traversalEPSS 0.6%CVE-2025-11630MEDIUMRainyGao DocSys File Upload uploadDoc.do updateRealDoc path traversalEPSS 0.6%CVE-2026-7565MEDIUMLearnPress <= 4.1.4 - Authenticated (Administrator+) Path Traversal to Arbitrary File Read via 'import-user-file' ParameterEPSS 0.6%CVE-2025-57682MEDIUMDirectory Traversal vulnerability in Papermark 0.20.0 and prior allows authenticated attackers to retrieve arbitrary files from an S3 bucketEPSS 0.6%CVE-2025-54140HIGHpyLoad has Path Traversal Vulnerability in json/upload Endpoint that allows Arbitrary File WriteEPSS 0.6%CVE-2025-25254MEDIUMAn Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE-22] in FortiWeb version 7.6.2 and belowEPSS 0.6%CVE-2024-6085HIGHPath Traversal in parisneo/lollmsEPSS 0.6%CVE-2025-13435MEDIUMDreampie Resty HttpClient HttpClient.java request path traversalEPSS 0.6%CVE-2026-27897CRITICALVociferous Unauthenticated Remote Path Traversal (RCE via CSRF)EPSS 0.6%CVE-2024-48224HIGHFunadmin v5.0.2 has an arbitrary file read vulnerability in /curd/index/editfile.EPSS 0.6%CVE-2024-13550MEDIUMABC Notation <= 6.1.3 - Authenticated (Contributor+) Arbitrary File ReadEPSS 0.6%CVE-2025-5740HIGHCWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause arbitrary file EPSS 0.6%CVE-2024-23768HIGHDremio before 24.3.1 allows path traversal. An authenticated user who has no privileges on certain folders (and the files and datasets in thEPSS 0.6%CVE-2024-32869MEDIUMHono vulnerable to Restricted Directory Traversal in serveStatic with denoEPSS 0.6%CVE-2025-41229HIGHVMware Cloud Foundation Directory Traversal VulnerabilityEPSS 0.6%