Weaknesses of type CWE-22

4,768 results
CVE-2022-22128CRITICALTableau discovered a path traversal vulnerability affecting Tableau Server Administration Agent’s internal file transfer service that could EPSS 1.3%CVE-2021-24692Simple Download Monitor < 3.9.5 - Contributor+ Arbitrary File Download via Path TraversalEPSS 1.3%CVE-2022-25936HIGHVersions of the package servst before 2.0.3 are vulnerable to Directory Traversal due to improper sanitization of the filePath variable. EPSS 1.3%CVE-2024-11150CRITICALWordPress User Extra Fields <= 16.6 - Unauthenticated Arbitrary File DeletionEPSS 1.3%CVE-2023-27105CRITICALA vulnerability in the Wi-Fi file transfer module of Shanling M5S Portable Music Player with Shanling MTouch OS v4.3 and Shanling M2X PortabEPSS 1.3%CVE-2018-1103MEDIUMOpenshift Enterprise source-to-image before version 1.1.10 is vulnerable to an improper validation of user input. An attacker who could tricEPSS 1.3%CVE-2023-46177MEDIUMIBM MQ Appliance information disclosureEPSS 1.3%CVE-2018-16485Path Traversal vulnerability in module m-server <1.4.1 allows malicious user to access unauthorized content of any file in the directory treEPSS 1.3%CVE-2024-9415HIGHPath Traversal in transformeroptimus/superagiEPSS 1.3%CVE-2021-33354HIGHDirectory Traversal vulnerability in htmly before 2.8.1 allows remote attackers to perform arbitrary file deletions via modified file parameEPSS 1.3%CVE-2021-34638MEDIUMWordPress Download Manager <= 3.1.24 Authenticated Directory TraversalEPSS 1.3%CVE-2022-45381HIGHJenkins Pipeline Utility Steps Plugin 2.13.1 and earlier does not restrict the set of enabled prefix interpolators and bundles versions of AEPSS 1.3%CVE-2022-25931HIGHDirectory TraversalEPSS 1.3%CVE-2022-44748HIGHUploading workflows to KNIME Server may override arbitrary file system contentsEPSS 1.3%CVE-2022-35918MEDIUMStreamlit directory traversal vulnerabilityEPSS 1.3%CVE-2022-39345CRITICALGin-vue-admin arbitrary file upload vulnerability caused by path traversalEPSS 1.3%CVE-2024-23673HIGHApache Sling Servlets Resolver: Malicious code execution via path traversalEPSS 1.3%CVE-2024-21633HIGHArbitrary file write on DecodingEPSS 1.3%CVE-2020-36893HIGHEibiz i-Media Server Digital Signage 3.8.0 Directory Traversal VulnerabilityEPSS 1.3%CVE-2021-35967MEDIUMLearningdigital.com, Inc. Orca HCM - Path Traversal-1EPSS 1.3%