Weaknesses of type CWE-22
4,704 resultsCVE-2022-44635HIGHApache Fineract allowed an authenticated user to perform remote code execution due to path traversalEPSS 68.8%CVE-2023-38126HIGHSofting edgeAggregator Restore Configuration Directory Traversal Remote Code Execution VulnerabilityEPSS 68.6%CVE-2020-4430MEDIUMIBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to traverse directories on the system. An aEPSS 68.5%KEVCVE-2021-29492HIGHBypass of path matching rules using escaped slash charactersEPSS 68.4%CVE-2024-23535HIGHA Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitraryEPSS 68.1%CVE-2024-24994HIGHA Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitraryEPSS 68.1%CVE-2023-40497CRITICALLG Simple Editor saveXml Directory Traversal Remote Code Execution VulnerabilityEPSS 67.4%CVE-2021-39316HIGHZoomSounds <= 6.45 Unauthenticated Directory Traversal and Sensitive Information DislosureEPSS 66.5%CVE-2022-31474HIGHWordPress BackupBuddy Plugin 8.5.8.0-8.7.4.1 is vulnerable to Directory TraversalEPSS 63.8%CVE-2022-30547CRITICALA directory traversal vulnerability exists in the unzipDirectory functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specialEPSS 63.7%CVE-2015-4068CRITICALDirectory traversal vulnerability in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive information or cause a denEPSS 63.6%KEVCVE-2023-35081HIGHA path traversal vulnerability in Ivanti EPMM versions (11.10.x < 11.10.0.3, 11.9.x < 11.9.1.2 and 11.8.x < 11.8.1.2) allows an authenticatEPSS 63.3%KEVCVE-2024-6781HIGHCalibre Arbitrary File ReadEPSS 62.7%CVE-2023-34096MEDIUMThruk has Path Traversal Vulnerability in panorama.pmEPSS 62.7%CVE-2023-26361MEDIUMAdobe ColdFusion Directory Traversal Arbitrary file system read VulnerabilityEPSS 62.3%CVE-2025-34508MEDIUMZendTo < 6.15-8 Path TraversalEPSS 62.1%CVE-2024-13179HIGHPath Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to bypass authentication.EPSS 61.8%CVE-2020-27128MEDIUMCisco SD-WAN vManage Software Arbitrary File Creation VulnerabilityEPSS 60.8%CVE-2024-27921HIGHGrav File Upload Path Traversal vulnerabilityEPSS 60.6%CVE-2022-29517CRITICALA directory traversal vulnerability exists in the HelpdeskActions.aspx edittemplate functionality of Lansweeper lansweeper 10.1.1.0. A speciEPSS 60.2%