Weaknesses of type CWE-22
4,768 resultsCVE-2021-35967MEDIUMLearningdigital.com, Inc. Orca HCM - Path Traversal-1EPSS 1.3%CVE-2021-24566HIGHWooCommerce Currency Switcher < 1.3.7 - Authenticated (Low Privilege) Local File InclusionEPSS 1.3%CVE-2022-2926MEDIUMDownload Manager < 3.2.55 - Admin+ Arbitrary File/Folder Access via Path TraversalEPSS 1.3%CVE-2025-34076MEDIUMMicroweber CMS Authenticated Local File Inclusion via Backup APIEPSS 1.3%CVE-2023-48378HIGHSoftnext Mail SQR Expert - Path Traversal EPSS 1.3%CVE-2023-48389HIGHMultisuns EasyLog web+ - Path TraversalEPSS 1.3%CVE-2023-48373HIGHITPison OMICARD EDM 's SMS - Path TraversalEPSS 1.3%CVE-2025-4206HIGHWordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg <= 4.1.1.2 - Authenticated (Administrator+) Arbitrary File DeletionEPSS 1.3%CVE-2023-6559HIGHMW WP Form <= 5.0.3 - Improper Limitation of File Name to Unauthenticated Arbitrary File DeletionEPSS 1.3%CVE-2024-0221CRITICALPhoto Gallery by 10Web - Mobile-Friendly Image Gallery <= 1.8.19 - Directory Traversal to Arbitrary File RenameEPSS 1.3%CVE-2026-6227HIGHBackWPup <= 5.6.6 - Authenticated (Administrator+) Local File Inclusion via 'block_name' ParameterEPSS 1.3%CVE-2021-20218—A flaw was found in the fabric8 kubernetes-client in version 4.2.0 and after. This flaw allows a malicious pod/container to cause applicatioEPSS 1.3%CVE-2023-46307HIGHAn issue was discovered in server.js in etcd-browser 87ae63d75260. By supplying a /../../../ Directory Traversal input to the URL's GET requEPSS 1.3%CVE-2024-52293HIGHCraft has a Potential Remote Code Execution via missing path normalization & Twig SSTIEPSS 1.3%CVE-2020-6767HIGHPath Traversal in Bosch Video Management System (BVMS)EPSS 1.3%CVE-2024-5980CRITICALArbitrary File Write via /v1/runs API endpoint in lightning-ai/pytorch-lightningEPSS 1.3%CVE-2021-32746MEDIUMPossible path traversal by use of the `doc` moduleEPSS 1.3%CVE-2022-27610MEDIUMImproper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology DiskStation ManEPSS 1.3%CVE-2020-18331CRITICALDirectory traversal vulnerability in ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01(hardware pEPSS 1.3%CVE-2023-27588HIGHUnauthenticated path traversal vulnerability in Hasura GraphQL EngineEPSS 1.3%