Weaknesses of type CWE-22

4,856 results
CVE-2026-11847MEDIUMIntegration Corp|iVEC-IEI Virtualization Edge Computer - Arbitrary File DeletionEPSS 0.3%CVE-2026-7738MEDIUMpuchunjie doc-tools-mcp MCP mcp-server.ts open_document path traversalEPSS 0.3%CVE-2023-47541MEDIUMAn improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.2EPSS 0.3%CVE-2026-26960HIGHnode-tar has Arbitrary File Read/Write via Hardlink Target Escape Through Symlink Chain in ExtractionEPSS 0.3%CVE-2026-7715MEDIUMravenwits mcp-server-arangodb MCP tools.ts arango_backup path traversalEPSS 0.3%CVE-2026-39977HIGHflatpak-builder has a path traversal leading to arbitrary file read on host when installing licence filesEPSS 0.3%CVE-2026-27735MEDIUMmcp-server-git : Path traversal in git_add allows staging files outside repository boundariesEPSS 0.3%CVE-2026-34730MEDIUMCopier `_external_data` allows path traversal and absolute-path local file read without unsafe modeEPSS 0.3%CVE-2025-48394MEDIUMAn attacker with authenticated and privileged access could modify the contents of a non-sensitive file by traversing the path in the limitedEPSS 0.3%CVE-2023-35946MEDIUMDependency cache path traversal in GradleEPSS 0.3%CVE-2026-55699MEDIUMpnpm: reserved bin name deletes PNPM_HOME during global removeEPSS 0.3%CVE-2021-33183HIGHImproper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability container volume management component in SynoloEPSS 0.3%CVE-2023-44278MEDIUM Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a path traversal vulnerability. A localEPSS 0.3%CVE-2026-54590MEDIUMAsyncSSH AuthorizedKeysFile username substitution bypass through ~ and environment expansionEPSS 0.3%CVE-2026-29509MEDIUMPatool < 4.0.5 Path Traversal via safe_extract() FunctionEPSS 0.3%CVE-2025-50819HIGHDirectory traversal vulnerability in beiyuouo arxiv-daily thru 2025-05-06 (commit fad168770b0e68aef3e5acfa16bb2e7a7765d687) when parsing theEPSS 0.3%CVE-2026-8116MEDIUMhuangjunsen0406 xiaozhi-mcphub dxtController.ts path traversalEPSS 0.3%CVE-2022-4772MEDIUMWidoco WidocoUtils.java unZipIt path traversalEPSS 0.3%CVE-2024-34129HIGHAcrobat Android : OverSecured Finding : Overwriting arbitrary files via attacker-controlled output file pathsEPSS 0.3%CVE-2024-1629MEDIUMPath traversal vulnerability in “deleteFiles” function of Common Service Desktop, a GE HealthCare ultrasound device componentEPSS 0.3%