Weaknesses of type CWE-22
4,766 resultsCVE-2021-31385HIGHJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to rootEPSS 1.5%CVE-2020-5370HIGHDell EMC OpenManage Enterprise (OME) versions prior to 3.4 contain an arbitrary file overwrite vulnerability. A remote authenticated malicioEPSS 1.5%CVE-2022-46255CRITICALImproper Limitation of a Pathname to a Restricted Directory in GitHub Enterprise Server leading to RCEEPSS 1.4%CVE-2021-21272HIGHzip slip in ORASEPSS 1.4%CVE-2025-55169CRITICALWeGIA Path Traversal at endpoint 'html/socio/sistema/download_remessa.php' via parameter 'file'EPSS 1.4%CVE-2026-26975HIGHMusic Assistant Server Path Traversal in Playlist Update API Allows Remote Code ExecutionEPSS 1.4%CVE-2025-66744HIGHIn Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service system is vulnerable to path traversal, allEPSS 1.4%CVE-2023-26111HIGHAll versions of the package @nubosoftware/node-static; all versions of the package node-static are vulnerable to Directory Traversal due to EPSS 1.4%CVE-2022-50796CRITICALSOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Unauthenticated Remote Code Execution via upload.cgiEPSS 1.4%CVE-2021-21908MEDIUMSpecially-crafted command line arguments can lead to arbitrary file deletion. The handle_delete function does not attempt to sanitize or othEPSS 1.4%CVE-2024-23822MEDIUMThruk Incorrect limitation of a pathname to a restricted directory (Path Traversal) (CWE-22)EPSS 1.4%CVE-2024-5752CRITICALPath Traversal in stitionai/devikaEPSS 1.4%CVE-2021-1532MEDIUMCisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Read VulnerabilityEPSS 1.4%CVE-2025-34118HIGHLinknat VOS Manager Path Traversal File DisclosureEPSS 1.4%CVE-2020-7535—A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal' Vulnerability Type) vulnerability exists in the Web EPSS 1.4%CVE-2025-6794CRITICALMarvell QConvergeConsole saveAsText Directory Traversal Remote Code Execution VulnerabilityEPSS 1.4%CVE-2021-21907MEDIUMA directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett Metal Detectors’ iC Module CMA Version 5.0EPSS 1.4%CVE-2024-40617MEDIUMPath traversal vulnerability exists in FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS). If a remote authenticated attacker with User ClassEPSS 1.4%CVE-2024-7924MEDIUMZZCMS list.php path traversalEPSS 1.4%CVE-2026-33309CRITICALLangflow has an Arbitrary File Write (RCE) via v2 APIEPSS 1.4%