Weaknesses of type CWE-22

4,805 results
CVE-2025-62853MEDIUMFile Station 5EPSS 0.6%CVE-2024-55658HIGHSiYuan has an arbitrary file read and path traversal via /api/export/exportResourcesEPSS 0.6%CVE-2024-27776CRITICALMileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')EPSS 0.6%CVE-2026-40050CRITICALCrowdStrike LogScale Unauthenticated Path TraversalEPSS 0.6%CVE-2025-66249MEDIUMApache Livy: Unauthorized directory accessEPSS 0.6%CVE-2024-33560CRITICALWordPress XStore theme <= 9.3.8 - Unauthenticated Local File Inclusion vulnerabilityEPSS 0.6%CVE-2024-42718MEDIUMA path traversal vulnerability in Croogo CMS 4.0.7 allows remote attackers to read arbitrary files via a specially crafted path in the 'editEPSS 0.6%CVE-2025-55149MEDIUMPath Traversal Vulnerability in PDF Review Function (CWE-22)EPSS 0.6%CVE-2025-27092HIGHPath Traversal Vulnerability in GHOSTS Photo Retrieval EndpointEPSS 0.6%CVE-2024-49760HIGHOpenRefine has a path traversal in LoadLanguageCommandEPSS 0.6%CVE-2023-3406HIGHPath traversal issue in M-Files Classic WebEPSS 0.6%CVE-2026-3366HIGHInfoSphere Optim Test Data Fabrication is affected by Arbitrary File ReadEPSS 0.6%CVE-2018-25311HIGHVideoFlow Digital Video Protection DVP 2.10 Authenticated Directory TraversalEPSS 0.6%CVE-2025-62353CRITICALA path traversal vulnerability in all versions of the Windsurf IDE enables a threat actor to read and write arbitrary local files in and outEPSS 0.6%CVE-2025-30878HIGHWordPress JS Help Desk plugin <= 2.9.2 - Arbitrary File Deletion vulnerabilityEPSS 0.6%CVE-2026-29963HIGHHSC MailInspector 5.3.3-7 has a Path Traversal vulnerability due to improper validation of user-supplied input in the /tap/dw.php endpoint. EPSS 0.6%CVE-2026-57296HIGHJenkins External Workspace Manager Plugin 1.3.2 and earlier does not reject path traversal sequences in the custom workspace path provided tEPSS 0.6%CVE-2023-39611HIGHAn issue in Software FX Chart FX 7 version 7.0.4962.20829 allows attackers to enumerate and read files from the local filesystem by sending EPSS 0.6%CVE-2025-5509MEDIUMquequnlong shiyi-blog upload path traversalEPSS 0.6%CVE-2025-42977HIGHDirectory Traversal vulnerability in SAP NetWeaver Visual ComposerEPSS 0.6%