Weaknesses of type CWE-22
4,704 resultsCVE-2019-3816HIGHOpenwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openwsmand daemoEPSS 14.7%CVE-2025-8356CRITICALPath Traversal leading to RCEEPSS 14.7%CVE-2024-38816HIGHCVE-2024-38816: Path traversal vulnerability in functional web frameworksEPSS 14.7%CVE-2022-24715HIGHArbitrary code execution for authenticated users in Icinga Web 2EPSS 14.7%CVE-2024-46987HIGHArbitrary path traversal in Camaleon CMSEPSS 14.6%CVE-2025-9713HIGHPath traversal in Ivanti Endpoint Manager before version 2024 SU4 allows a remote unauthenticated attacker to achieve remote code execution.EPSS 14.5%CVE-2024-55415MEDIUMDevDojo Voyager through 1.8.0 is vulnerable to path traversal at the /admin/compass.EPSS 14.4%CVE-2021-35250HIGHDirectory Transversal Vulnerability in Serv-U 15.3EPSS 14.4%CVE-2025-34040CRITICALSeeyon Zhiyuan OA System Path Traversal File UploadEPSS 14.4%CVE-2019-15981HIGHCisco Data Center Network Manager Path Traversal VulnerabilitiesEPSS 14.3%CVE-2019-15982HIGHCisco Data Center Network Manager Path Traversal VulnerabilitiesEPSS 14.3%CVE-2024-21518HIGHThis affects versions of the package opencart/opencart from 4.0.0.0. A Zip Slip issue was identified via the marketplace installer due to imEPSS 14.1%CVE-2025-34176MEDIUMNetgate pfSense CE Suricata Package v7.0.8_2 Directory Traversal Information DisclosureEPSS 14.0%CVE-2022-3387MEDIUM
Advantech R-SeeNet Versions 2.4.19 and prior are vulnerable to path traversal attacks. An unauthorized attacker could remotely exploit vulnEPSS 14.0%CVE-2017-11152—Directory traversal vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackersEPSS 13.9%CVE-2019-1818MEDIUMCisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal VulnerabilityEPSS 13.9%CVE-2019-1819MEDIUMCisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal VulnerabilityEPSS 13.9%CVE-2019-1820MEDIUMCisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal VulnerabilityEPSS 13.9%CVE-2025-62725HIGHDocker Compose Vulnerable to Path Traversal via OCI Artifact Layer AnnotationsEPSS 13.8%CVE-2024-45241HIGHA traversal vulnerability in GeneralDocs.aspx in CentralSquare CryWolf (False Alarm Management) through 2024-08-09 allows unauthenticated atEPSS 13.6%