Weaknesses of type CWE-22
4,728 resultsCVE-2020-15640HIGHThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Marvell QConvergeConsole 5.5.0.64.EPSS 3.2%CVE-2026-25732HIGHNiceGUI's Path Traversal via Unsanitized FileUpload.name Enables Arbitrary File WriteEPSS 3.2%CVE-2023-38951CRITICALZKTeco BioTime 8.5.5 through 9.x before 9.0.1 (20240617.19506) allows authenticated attackers to create or overwrite arbitrary files on the EPSS 3.2%CVE-2017-16197—qinserve is a static file server. qinserve is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placEPSS 3.2%CVE-2023-35169CRITICALphp-imap vulnerable to RCE through a directory traversal vulnerabilityEPSS 3.2%CVE-2022-2711HIGHWP All Import < 3.6.9 - Admin+ Directory traversal via file uploadEPSS 3.2%CVE-2019-10197MEDIUMA flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters wEPSS 3.2%CVE-2019-13532—CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which may allow EPSS 3.2%CVE-2024-27173CRITICALinsecure uploadEPSS 3.2%CVE-2024-32399HIGHDirectory Traversal vulnerability in RaidenMAILD Mail Server v.4.9.4 and before allows a remote attacker to obtain sensitive information viaEPSS 3.2%CVE-2020-36728MEDIUMAdning Advertising <= 1.5.5 - Unauthenticated Arbitrary File Deletion via Path TraversalEPSS 3.2%CVE-2024-57248MEDIUMDirectory Traversal in File Upload in Gleamtech FileVista 9.2.0.0 allows remote attackers to achieve Code Execution, Information Disclosure,EPSS 3.2%CVE-2024-23946MEDIUMApache OFBiz: Path traversal or file inclusionEPSS 3.1%CVE-2024-36117HIGHPath traversal while serving Reposilite javadoc expanded filesEPSS 3.1%CVE-2021-22656—Advantech iView versions prior to v5.7.03.6112 are vulnerable to directory traversal, which may allow an attacker to read sensitive files.EPSS 3.1%CVE-2014-5436—A directory traversal vulnerability exists in the confd.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43EPSS 3.1%CVE-2019-10137HIGHA path traversal flaw was found in spacewalk-proxy, all versions through 2.9, in the way the proxy processes cached client tokens. A remote,EPSS 3.1%CVE-2021-36031HIGHMagento Commerce Path Traversal In `theme[preview_image]` Parameter Could Lead To Remote Code ExecutionEPSS 3.1%CVE-2017-2595HIGHIt was found that the log file viewer in Red Hat JBoss Enterprise Application 6 and 7 allows arbitrary file read to authenticated user via pEPSS 3.1%CVE-2022-45269HIGHA directory traversal vulnerability in the component SCS.Web.Server.SPI/1.0 of Linx Sphere LINX 7.35.ST15 allows attackers to read arbitraryEPSS 3.1%