Weaknesses of type CWE-22

4,832 results
CVE-2026-14327HIGHAR for WordPress <= 8.40 - Unauthenticated Arbitrary File Read via 'file' ParameterEPSS 0.5%CVE-2026-39407MEDIUMHono has a middleware bypass via repeated slashes in serveStaticEPSS 0.5%CVE-2023-25606MEDIUMAn improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-23] in FortiAnalyzer and FortiManager mEPSS 0.5%CVE-2025-14344CRITICALMulti Uploader for Gravity Forms <= 1.1.7 - Unauthenticated Arbitrary File DeletionEPSS 0.5%CVE-2025-55295MEDIUMqBit Manage Path Traversal VulnerabilityEPSS 0.5%CVE-2025-51463HIGHPath Traversal in restore_run_backup() in AIM 3.28.0 allows remote attackers to write arbitrary files to the server's filesystem via a craftEPSS 0.5%CVE-2024-6791HIGHDirectory Path Traversal Vulnerability in NI VeriStand with vsmodel FilesEPSS 0.5%CVE-2025-68901HIGHWordPress Anona theme <= 8.0 - Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2025-8753MEDIUMlinlinjava litemall File delete path traversalEPSS 0.5%CVE-2019-3696HIGHpcp: Local privilege escalation from user pcp to root through migrate_tempdirsEPSS 0.5%CVE-2023-6120MEDIUMWelcart e-Commerce <= 2.9.6 - Authenticated (Administrator+) Directory TraversalEPSS 0.5%CVE-2026-52756MEDIUMGhidra < 12.2 - Unauthenticated Path Traversal in Debugger ISF ServerEPSS 0.5%CVE-2025-3214MEDIUMJFinal CMS readTemplate engine.getTemplate path traversalEPSS 0.5%CVE-2024-0980HIGHThe Auto-update service for Okta Verify for Windows is vulnerable to two flaws which in combination could be used to execute arbitrary code.EPSS 0.5%CVE-2025-69377HIGHWordPress User Extra Fields plugin <= 17.0 - Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2026-25691MEDIUMA improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5,EPSS 0.5%CVE-2023-25750MEDIUMUnder certain circumstances, a ServiceWorker's offline cache may have leaked to the file system when using private browsing mode. This vulneEPSS 0.5%CVE-2026-23633MEDIUMGogs has arbitrary file read/write via path traversal in Git hook editingEPSS 0.5%CVE-2026-9506HIGHPath Traversal Vulnerability in BagistoEPSS 0.5%CVE-2025-50350MEDIUMPHPGurukul Pre-School Enrollment System Project v1.0 is vulnerable to Directory Traversal in manage-classes.php.EPSS 0.5%