Weaknesses of type CWE-22

4,817 results
CVE-2024-56248MEDIUMWordPress WPMasterToolKit plugin <= 1.13.1 - Arbitrary File Download vulnerabilityEPSS 0.5%CVE-2024-37169MEDIUM@jmondi/url-to-png arbitrary file read via Playwright's screenshot feature exploiting file wrapperEPSS 0.5%CVE-2024-47264MEDIUMImproper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in agent-related functionality in Synology ActiEPSS 0.5%CVE-2025-24961MEDIUMInsecure path traversal in filesystem and filesystem-nio2 storage backends in org.gaul S3ProxyEPSS 0.5%CVE-2026-27699CRITICALBasic FTP has Path Traversal Vulnerability in its downloadToDir() methodEPSS 0.5%CVE-2023-35947MEDIUMPath traversal vulnerabilities in handling of Tar archives in GradleEPSS 0.5%CVE-2026-41202CRITICALci4ms Backup::restore is vulnerable to Zip Slip leading to RCEEPSS 0.5%CVE-2026-5535MEDIUMFedML-AI FedML MQTT Message FileUtils.java path traversalEPSS 0.5%CVE-2019-25295MEDIUMWP Cost Estimation < 9.660 - Upload Directory TraversalEPSS 0.5%CVE-2024-35754HIGHWordPress Ovic Importer plugin <= 1.6.3 - Arbitrary File Download vulnerabilityEPSS 0.5%CVE-2026-29065HIGHchangedetection.io: Zip Slip vulnerability in the backup restore functionalityEPSS 0.5%CVE-2026-48827HIGHApache MINA SSHD: Path traversal in org.apache.sshd:sshd-gitEPSS 0.5%CVE-2026-39399CRITICALNuGet Gallery: Arbitrary Blob Overwrite via Nuspec Confusion and URI Fragment TruncationEPSS 0.5%CVE-2026-23949HIGHjaraco.context Has a Path Traversal VulnerabilityEPSS 0.5%CVE-2026-27202HIGHGetSimple CMS: Uploaded Files (feature) Arbitrary File Read VulnerabilityEPSS 0.5%CVE-2024-45443MEDIUMDirectory traversal vulnerability in the cust module Impact: Successful exploitation of this vulnerability will affect availability and confEPSS 0.5%CVE-2024-20529MEDIUMCisco Identity Services Engine Arbitrary File Read and Delete VulnerabilityEPSS 0.5%CVE-2025-31825MEDIUMWordPress Category Icon plugin <= 1.0.1 - Arbitrary File Download vulnerabilityEPSS 0.5%CVE-2024-20527MEDIUMCisco Identity Services Engine Arbitrary File Read and Delete VulnerabilityEPSS 0.5%CVE-2025-21095MEDIUMKeysight Ixia Vision Product Family Path TraversalEPSS 0.5%