Weaknesses of type CWE-22
4,841 resultsCVE-2026-24741HIGHConvertX Vulnerable to Arbitrary File Deletion via Path Traversal in `POST /delete`EPSS 0.4%CVE-2026-4351HIGHPerfmatters <= 2.5.9 - Authenticated (Subscriber+) Arbitrary File Overwrite via 'snippets' ParameterEPSS 0.4%CVE-2026-0964MEDIUMLibssh: improper sanitation of paths received from scp serversEPSS 0.4%CVE-2026-7086MEDIUMHBAI-Ltd Toonflow-app Storyboard Export replaceUrl.ts updateStoryboardUrl path traversalEPSS 0.4%CVE-2024-1163HIGHPath traversal vulnerability in mapshaperEPSS 0.4%CVE-2026-53779HIGHWebP Server Go < 0.15.0 Path Traversal via Backslash Encoding on WindowsEPSS 0.4%CVE-2026-29786HIGHnode-tar: Hardlink Path Traversal via Drive-Relative LinkpathEPSS 0.4%CVE-2026-11844MEDIUMIEI Integration Corp|iVEC-IEI Virtualization Edge Computer - Arbitrary File ReadEPSS 0.4%CVE-2022-44749MEDIUMOpening workflows from untrusted resources may override arbitrary file system contentsEPSS 0.4%CVE-2025-37100HIGHExposure of Sensitive Information to an Unauthorized User in HPE Aruba Networking Private 5G CoreEPSS 0.4%CVE-2026-58467HIGHCockpit CMS 2.14.0 - Path Traversal Local File Inclusion via index.phpEPSS 0.4%CVE-2024-56142MEDIUMPath Traversal in pghoardEPSS 0.4%CVE-2026-34978MEDIUMOpenPrinting CUPS: Path traversal in RSS notify-recipient-uri enables file write outside CacheDir/rss (and clobbering of job.cache)EPSS 0.4%CVE-2024-4556MEDIUMDirectory traversal vulnerability in NetIQ Access ManagerEPSS 0.4%CVE-2021-31421LOWThis vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop 16.1.1-49141. An attackerEPSS 0.4%CVE-2025-67115MEDIUMA path traversal vulnerability in /ftl/web/setup.cgi in Small Cell Sercomm SCE4255W (FreedomFi Englewood) firmware before DG3934v3@230804184EPSS 0.4%CVE-2026-46724MEDIUMPath Traversal in extension "Faceted Search" (ke_search)EPSS 0.4%CVE-2025-53622MEDIUMDSpace has path traversal vulnerability in Simple Archive Format (SAF) package import via contents fileEPSS 0.4%CVE-2026-41887MEDIUMFlarum: Path traversal in LESS parser via theme color settings (incomplete fix for CVE-2023-27577)EPSS 0.4%CVE-2025-49415HIGHWordPress FW Gallery plugin <= 8.0.0 - Arbitrary File Deletion VulnerabilityEPSS 0.4%