Weaknesses of type CWE-22

4,821 results
CVE-2025-21095MEDIUMKeysight Ixia Vision Product Family Path TraversalEPSS 0.5%CVE-2024-37092HIGHWordPress Consulting Elementor Widgets plugin <= 1.3.0 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2024-43135HIGHWordPress WPCafe plugin <= 2.2.28 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2025-48026HIGHA vulnerability in the WebApl component of Mitel OpenScape Xpressions through V7R1 FR5 HF43 P913 could allow an unauthenticated attacker to EPSS 0.5%CVE-2024-49780MEDIUMIBM OpenPages path traversalEPSS 0.5%CVE-2026-12198MEDIUMMicroweber API Endpoint thumbnail_img userfiles_path path traversalEPSS 0.5%CVE-2024-39624HIGHWordPress ListingPro theme <= 2.9.4 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2025-13262MEDIUMlsfusion platform UploadFileRequestHandler.java UploadFileRequestHandler path traversalEPSS 0.5%CVE-2025-51481MEDIUMLocal File Inclusion in dagster._grpc.impl.get_notebook_data in Dagster 1.10.14 allows attackers with access to the gRPC server to read arbiEPSS 0.5%CVE-2024-7609CRITICALDirectory Traversal in Vidco Software's VOC TESTEREPSS 0.5%CVE-2023-24804MEDIUMownCloud Android app vulnerable to Path TraversalEPSS 0.5%CVE-2024-36427HIGHThe file-serving function in TARGIT Decision Suite before 24.06.19002 (TARGIT Decision Suite 2024 – June) allows authenticated attackers to EPSS 0.5%CVE-2025-70950HIGHAn issue in gohttp commit 34ea51 allows attackers to execute a directory traversal via supplying a crafted request.EPSS 0.5%CVE-2026-44542CRITICALFileBrowser Quantum: Unauthenticated Path Traversal in Public Share Delete Allows Arbitrary File DeletionEPSS 0.5%CVE-2024-50626HIGHAn issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker EPSS 0.5%CVE-2025-27101HIGHBroken Access Control in Opal filesystem's copy functionality exposes all user dataEPSS 0.5%CVE-2024-39918MEDIUMPath Traveral in @jmondi/url-to-pngEPSS 0.5%CVE-2025-6772MEDIUMeosphoros-ai db-gpt import import_flow path traversalEPSS 0.5%CVE-2024-33568HIGHWordPress Element Pack Pro plugin < 7.19.3 - Arbitrary File Read and Phar Deserialization vulnerabilityEPSS 0.5%CVE-2026-23850HIGHSiYuan vulnerable to arbitrary file readEPSS 0.5%