Weaknesses of type CWE-22

4,854 results
CVE-2025-69055MEDIUMWordPress BM Content Builder plugin < 3.16.3.3 - Arbitrary File Download vulnerabilityEPSS 0.3%CVE-2019-25740HIGHJoomla com_jsjobs 1.2.6 Arbitrary File DeletionEPSS 0.3%CVE-2026-24970HIGHWordPress Energox theme <= 1.2 - Arbitrary File Deletion vulnerabilityEPSS 0.3%CVE-2026-55874HIGHSeaweedFS: Path traversal in the S3 gateway X-Amz-Copy-Source header allows cross-bucket object readEPSS 0.3%CVE-2026-32808HIGHpyLoad: Arbitrary File Deletion via Path Traversal during Encrypted 7z Password VerificationEPSS 0.3%CVE-2026-40779HIGHWordPress Link Library plugin <= 7.8.8 - Arbitrary File Deletion vulnerabilityEPSS 0.3%CVE-2025-28099MEDIUMopencms V2.3 is vulnerable to Arbitrary file read in src/main/webapp/view/admin/document/dataPage.jsp,EPSS 0.3%CVE-2026-24969HIGHWordPress Instant VA theme <= 1.0.1 - Arbitrary File Deletion vulnerabilityEPSS 0.3%CVE-2026-35167HIGHKedro has a path traversal in versioned dataset loading via unsanitized version stringEPSS 0.3%CVE-2025-8522LOWgivanz Vvvebjs node.js save.php path traversalEPSS 0.3%CVE-2025-54959MEDIUMPowered BLUE Server versions 0.20130927 and prior contain a path traversal vulnerability. If this vulnerability is exploited, an arbitrary fEPSS 0.3%CVE-2025-55011MEDIUMKanboard Path Traversal in File Write via Task File Upload ApiEPSS 0.3%CVE-2023-43801MEDIUMPath traversal in Arduino Create AgentEPSS 0.3%CVE-2023-43803MEDIUMPath traversal in Arduino Create AgentEPSS 0.3%CVE-2026-41911MEDIUMOpenClaw < 2026.4.8 - Workspace-Only Filesystem Policy Bypass via docx upload_file/upload_imageEPSS 0.3%CVE-2026-5166CRITICALPath Traversal in TUBITAK BILGEM's Pardus Software CenterEPSS 0.3%CVE-2022-45792HIGHDirectory Traversal in Project File Format allows overwrite (Zip Slip)EPSS 0.3%CVE-2026-28791HIGHPath Traversal in Media Upload Handle in TinaEPSS 0.3%CVE-2026-22762MEDIUMDell Avamar Server and Avamar Virtual Edition, versions prior to 19.10 SP1 with CHF338912, contain an Improper Limitation of a Pathname to aEPSS 0.3%CVE-2026-35483MEDIUMtext-generation-webui has a Path Traversal in load_template() — .jinja/.yaml/.yml file read without authenticationEPSS 0.3%