Weaknesses of type CWE-22
4,747 resultsCVE-2026-5027HIGHLangflow - Path Traversal Arbitrary File Write via upload_user_fileEPSS 2.1%CVE-2021-32814HIGHImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in SkytableEPSS 2.1%CVE-2023-51647HIGHAllegra saveInlineEdit Directory Traversal Remote Code Execution VulnerabilityEPSS 2.1%CVE-2023-51643HIGHAllegra uploadFile Directory Traversal Remote Code Execution VulnerabilityEPSS 2.1%CVE-2021-22794CRITICALA CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code exEPSS 2.1%CVE-2024-23475CRITICALSolarWinds Access Rights Manager Directory Traversal and Information Disclosure VulnerabilityEPSS 2.1%CVE-2023-50233HIGHInductive Automation Ignition getJavaExecutable Directory Traversal Remote Code Execution VulnerabilityEPSS 2.1%CVE-2023-37460HIGHPlexus Archiver vulnerable to Arbitrary File Creation in AbstractUnArchiverEPSS 2.1%CVE-2023-5241CRITICALAI ChatBot <= 4.8.9 and 4.9.2 - Authenticated (Subscriber+) Directory Traversal to Arbitrary File Write via qcld_openai_upload_pagetraining_fileEPSS 2.1%CVE-2023-42130HIGHA10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion VulnerabilityEPSS 2.1%CVE-2024-48510CRITICALDirectory Traversal vulnerability in DotNetZip v.1.16.0 and before allows a remote attacker to execute arbitrary code via the src/Zip.SharedEPSS 2.1%CVE-2020-26252HIGHLayout XML RCE Vulnerability in OpenMageEPSS 2.1%CVE-2025-13339HIGHHippoo Mobile App for WooCommerce <= 1.7.1 - Unauthenticated Arbitrary File ReadEPSS 2.1%CVE-2007-3967HIGHDirectory traversal vulnerability in index.php in PHP Directory Lister (dirLIST) before 0.1.1 allows remote attackers to list the contents oEPSS 2.1%CVE-2015-10136HIGHGI-Media Library < 3.0 - Directory TraversalEPSS 2.0%CVE-2018-3787—Path traversal in simplehttpserver <v0.2.1 allows listing any file on the server.EPSS 2.0%CVE-2018-3727—626 node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read contentEPSS 2.0%CVE-2018-3725—hekto node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read conteEPSS 2.0%CVE-2018-3731—public node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to read EPSS 2.0%CVE-2018-3730—mcstatic node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to reaEPSS 2.0%