Weaknesses of type CWE-22
4,761 resultsCVE-2023-40509HIGHLG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion VulnerabilityEPSS 2.0%CVE-2023-40499HIGHLG Simple Editor mkdir Directory Traversal Arbitrary File Deletion VulnerabilityEPSS 2.0%CVE-2022-0320—Essential Addons for Elementor < 5.0.5 - Unauthenticated LFIEPSS 2.0%CVE-2017-12074—Directory traversal vulnerability in the SYNO.DNSServer.Zone.MasterZoneConf in Synology DNS Server before 2.2.1-3042 allows remote authenticEPSS 2.0%CVE-2020-8214—A path traversal vulnerability in servey version < 3 allows an attacker to read content of any arbitrary file.EPSS 2.0%CVE-2019-16777HIGHArbitrary File Overwrite in npm CLIEPSS 2.0%CVE-2020-3241MEDIUMCisco UCS Director Path Traversal VulnerabilityEPSS 2.0%CVE-2021-43836HIGHPHP file inclusion in the Sulu admin panelEPSS 2.0%CVE-2019-18253—An attacker could use specially crafted paths in a specific request to read or delete files from Relion 670 Series (versions 1p1r26, 1.2.3.1EPSS 2.0%CVE-2017-9270HIGHpost-auth arbitrary file write on cryptctl serverEPSS 2.0%CVE-2022-34254HIGHAdobe Commerce Improper Limitation of a Pathname to a Restricted Directory Arbitrary code executionEPSS 2.0%CVE-2023-50785LOWZoho ManageEngine ADAudit Plus before 7270 allows admin users to view names of arbitrary directories via path traversal.EPSS 2.0%CVE-2017-15894—Directory traversal vulnerability in the SYNO.FileStation.Extract in Synology DiskStation Manager (DSM) 6.0.x before 6.0.3-8754-3 and beforeEPSS 2.0%CVE-2023-30626HIGHJellyfin vulnerable to directory traversal and file write causing arbitrary code executionEPSS 2.0%CVE-2017-15895—Directory traversal vulnerability in the SYNO.FileStation.Extract in Synology Router Manager (SRM) before 1.1.5-6542-4 allows remote authentEPSS 2.0%CVE-2022-43864HIGHIBM Business Automation Workflow information disclosureEPSS 2.0%CVE-2019-10242—In Eclipse Kura versions up to 4.0.0, the SkinServlet did not checked the path passed during servlet call, potentially allowing path traversEPSS 2.0%CVE-2023-7327HIGHOzeki SMS Gateway <= 10.3.208 Unauthenticated Arbitrary File ReadEPSS 2.0%CVE-2021-32840HIGHPath Traversal in SharpZipLibEPSS 2.0%CVE-2026-25592CRITICALSemantic Kernel has an Arbitrary File Write via AI Agent Function Calling in .NET SDKEPSS 1.9%