Weaknesses of type CWE-22

4,857 results
CVE-2026-52755HIGHGhidra < 12.0.4 - Path Traversal via Zip Slip in Theme ImportEPSS 0.2%CVE-2026-52752HIGHGhidra < 12.0.2 - Path Traversal in Extension Installer via ZIP Entry NamesEPSS 0.2%CVE-2024-7061MEDIUMOkta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The vulnerability is fixed in Okta Verify for Windows vEPSS 0.2%CVE-2026-28800MEDIUMNatro Macro: Malicious actions allowed through Discord RC Commands by any userEPSS 0.2%CVE-2024-13894MEDIUMPath traversal in Smartwares camerasEPSS 0.2%CVE-2026-24686MEDIUMgo-tuf Path Traversal in TAP 4 Multirepo Client Allows Arbitrary File Write via Malicious Repository NamesEPSS 0.2%CVE-2026-40987HIGHRemote-file synchronizer in Spring Integration writes server-supplied filename under localDirectory without canonicalizationEPSS 0.2%CVE-2025-3718MEDIUMClient-side path traversal in Guardian/CMC before 25.2.0EPSS 0.2%CVE-2026-25636HIGHcalibre has a Path Traversal Leading to Arbitrary File Corruption and Code ExecutionEPSS 0.2%CVE-2022-34429MEDIUMDell Hybrid Client below 1.8 version contains a Zip Slip Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnEPSS 0.2%CVE-2026-12565MEDIUMPath Traversal (Zip-Slip) in unarchive moduleEPSS 0.2%CVE-2026-49144HIGHBrowserStack Runner 0.9.5 Path Traversal via _default HTTP HandlerEPSS 0.2%CVE-2025-9963CRITICALPath TraversalEPSS 0.2%CVE-2026-20625MEDIUMA parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.7.4,EPSS 0.2%CVE-2026-8464HIGHPath traversal in Neuron Soft Golem OEE MESEPSS 0.2%CVE-2026-2399MEDIUMCWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause critical files oEPSS 0.2%CVE-2026-28793HIGHPath Traversal Leading to Arbitrary File Read, Write and Delete in TinaCMSEPSS 0.2%CVE-2026-44437MEDIUMAngular SSR: Open Redirect and Request Steering via Encoded X-Forwarded-PrefixEPSS 0.2%CVE-2025-59825MEDIUMastral-tokio-tar has a path traversal in tar extractionEPSS 0.2%CVE-2024-46939LOWGame Extension Engine Path Traversal VulnerabilityEPSS 0.2%