Weaknesses of type CWE-22

4,857 results
CVE-2026-59152MEDIUMArbitrary server-side file read in LangSmith SDK TracingMiddlewareEPSS 0.2%CVE-2023-27409LOWA vulnerability has been identified in SCALANCE LPE9403 (All versions < V2.1). A path traversal vulnerability was found in the `deviceinfo` EPSS 0.2%CVE-2026-8274MEDIUMnpitre cramfs-tools Directory cramfsck.c do_directory path traversalEPSS 0.2%CVE-2026-7179MEDIUMOSPG binwalk WinCE Extraction Plugin winceextract.py read_null_terminated_string path traversalEPSS 0.2%CVE-2026-29051MEDIUMmelange has Path Traversal via .PKGINFO in --persist-lint-resultsEPSS 0.2%CVE-2025-14698MEDIUMatlaszz AI Photo Team Galleryit App gallery.photogallery.pictures.vault.album path traversalEPSS 0.2%CVE-2026-54319MEDIUMDaytona: Path traversal in sandbox volume id mounts arbitrary host paths into the sandbox — cross-tenant data access and host escapeEPSS 0.2%CVE-2026-11411MEDIUMiAI Lab PDF AI App chatpdf.pro getExternalCacheDir path traversalEPSS 0.2%CVE-2025-14702MEDIUMSmartbit CommV Smartschool App be.smartschool.mobile.SplashActivity path traversalEPSS 0.2%CVE-2025-14699MEDIUMMunicorn FAX App biz.faxapp.app path traversalEPSS 0.2%CVE-2026-45668CRITICALTrilium Notes : Note Import to RCE via #docName Path Traversal (Safe Import Enabled)EPSS 0.2%CVE-2025-6773MEDIUMHKUDS LightRAG File Upload document_routes.py upload_to_input_dir path traversalEPSS 0.2%CVE-2026-22927HIGHOmnissa Workspace ONE® Tunnel for Windows addresses a Local Privilege Escalation Vulnerability.EPSS 0.2%CVE-2026-25145MEDIUMmelange has a path traversal in license-path which allows reading files outside workspaceEPSS 0.2%CVE-2024-37129MEDIUMDell Inventory Collector, versions prior to 12.3.0.6 contains a Path Traversal vulnerability. A local authenticated malicious user could potEPSS 0.2%CVE-2026-30277HIGHAn arbitrary file overwrite vulnerability in PDF Reader App : TA/UTAX Mobile Print v3.7.2.251001 allows attackers to overwrite critical inteEPSS 0.2%CVE-2026-43940HIGHelecterm: Path traversal in electerm runWidget leads to arbitrary code executionEPSS 0.2%CVE-2026-24846MEDIUMmalcontent's archive extraction could write outside extraction directoryEPSS 0.2%CVE-2016-20048HIGHiSelect 1.4.0-2+b1 Local Buffer Overflow via key parameterEPSS 0.2%CVE-2025-11696HIGHStudio 5000 ® Simulation Interface SSRFEPSS 0.2%