Weaknesses of type CWE-22
4,728 resultsCVE-2022-38485MEDIUMA directory traversal vulnerability exists in the AgeVolt Portal prior to version 0.1 that leads to Information Disclosure. A remote authentEPSS 3.1%CVE-2024-24565MEDIUMCrateDB database has an arbitrary file read vulnerabilityEPSS 3.1%CVE-2017-16599—This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.7EPSS 3.1%CVE-2024-53582HIGHAn issue found in the Copy and View functions in the File Manager component of OpenPanel v0.3.4 allows attackers to execute a directory travEPSS 3.1%CVE-2014-0751—GE Proficy HMI/SCADA Path TraversalEPSS 3.1%CVE-2024-25000HIGHA Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitraryEPSS 3.0%CVE-2020-3490MEDIUMCisco Vision Dynamic Signage Director Path Traversal VulnerabilityEPSS 3.0%CVE-2024-31850HIGHA path traversal vulnerability exists in the Java version of CData Arc < 23.4.8839 when running using the embedded Jetty server, which couldEPSS 3.0%CVE-2024-42471HIGHArbitrary File Write via artifact extraction in actions/artifactEPSS 3.0%CVE-2024-11667HIGHA directory traversal vulnerability in the web management interface of Zyxel ATP series firmware versions V5.00 through V5.38, USG FLEX seriEPSS 3.0%KEVCVE-2024-55457MEDIUMMasterSAM Star Gate 11 is vulnerable to directory traversal via /adama/adama/downloadService. An attacker can exploit this vulnerability by EPSS 3.0%CVE-2026-24897CRITICALAuthenticated Remote Code Execution via Arbitrary File UploadEPSS 3.0%CVE-2024-10220HIGHArbitrary command execution through gitRepo volumeEPSS 3.0%CVE-2023-40054HIGHSolarWinds Network Configuration Manager Directory Traversal Remote Code Execution VulnerabilityEPSS 3.0%CVE-2025-32820HIGHA vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges can inject a path traversal sequence to make anEPSS 3.0%CVE-2023-35187HIGHSolarWinds Access Rights Manager Directory Traversal Remote Code Execution VulnerabilityEPSS 3.0%CVE-2025-34031HIGHMoodle LMS Jmol Plugin Path TraversalEPSS 3.0%CVE-2024-45598MEDIUMCacti has a Local File Inclusion (LFI) Vulnerability via Poller Standard Error Log PathEPSS 2.9%CVE-2021-24820—Cost Calculator <= 1.6 - Authenticated Local File InclusionEPSS 2.9%CVE-2024-23467CRITICALSolarWinds Access Rights Manager Directory Traversal Remote Code Execution VulnerabilityEPSS 2.9%