Weaknesses of type CWE-22

4,828 results
CVE-2024-12793MEDIUMPbootCMS IndexController.php path traversalEPSS 0.5%CVE-2020-15703MEDIUMaptdaemon allows unprivileged users to test for the presence of local files via the transaction Locale propertyEPSS 0.5%CVE-2026-24147MEDIUMNVIDIA Triton Inference Server contains a vulnerability in triton server where an attacker may cause an information disclosure by uploading EPSS 0.5%CVE-2025-66689MEDIUMA path traversal vulnerability exists in Zen MCP Server before 9.8.2 that allows authenticated attackers to read arbitrary files on the systEPSS 0.5%CVE-2025-0799MEDIUMIBM App Connect Enterprise Arbitrary File WriteEPSS 0.5%CVE-2026-47896HIGHApache Lucene.Net: Unauthenticated arbitrary file read on the Lucene.Net.Replicator replication serverEPSS 0.5%CVE-2026-3954MEDIUMOpenBMB XAgent workspace.py workspace path traversalEPSS 0.5%CVE-2026-7271MEDIUMDV0x creative-ad-agent creative-ad-agent-server sdk-server.ts path traversalEPSS 0.5%CVE-2025-69097HIGHWordPress WPLMS plugin <= 1.9.9.5.4 - Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2026-7396MEDIUMNousResearch hermes-agent WeChat Work Platform Adapter wecom.py path traversalEPSS 0.5%CVE-2026-24046HIGHBackstage has a Possible Symlink Path Traversal in Scaffolder ActionsEPSS 0.5%CVE-2026-11414CRITICALUnauthenticated File Exfiltration in Altium Enterprise Server Vault Service via Hard-coded Cryptographic Key and Path TraversalEPSS 0.5%CVE-2024-45312MEDIUMArbitrary language parameter can passed to `aspell` executable via spelling requests in overleafEPSS 0.5%CVE-2023-38012MEDIUMIBM Cloud Pak System directory traversalEPSS 0.5%CVE-2026-44017HIGHDocling: Unsafe Zip Extraction in EasyOCR Model DownloadEPSS 0.5%CVE-2025-31493MEDIUMPath traversal of collection names during file system lookupEPSS 0.5%CVE-2024-9100MEDIUMLocal File InclusionEPSS 0.5%CVE-2024-37372LOWThe Permission Model assumes that any path starting with two backslashes \ has a four-character prefix that can be ignored, which is not alwEPSS 0.5%CVE-2024-7248HIGHComodo Internet Security Pro Directory Traversal Local Privilege Escalation VulnerabilityEPSS 0.5%CVE-2026-32709MEDIUMPX4 Autopilot MAVLink FTP Unauthenticated Path Traversal (Arbitrary File Read/Write/Delete)EPSS 0.5%