Weaknesses of type CWE-22

4,768 results
CVE-2012-10034HIGHClanSphere 2011.3 Local File Inclusion via cs_lang CookieEPSS 1.3%CVE-2021-22804A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause disclosure of arbitrary files beEPSS 1.3%CVE-2021-41151MEDIUMPath Traversal in @backstage/plugin-scaffolder-backendEPSS 1.3%CVE-2026-4347HIGHMW WP Form <= 5.1.0 - Unauthenticated Arbitrary File Move via move_temp_file_to_upload_dirEPSS 1.3%CVE-2024-40629CRITICALArbitrary File Write in Ansible Playbooks leads to RCE in JumpserverEPSS 1.3%CVE-2023-31904HIGHsavysoda Wifi HD Wireless Disk Drive 11 is vulnerable to Local File Inclusion.EPSS 1.3%CVE-2023-23838MEDIUMDirectory traversal and file enumeration vulnerability: Database Performance Analyzer (DPA) 2023.1EPSS 1.3%CVE-2025-27519CRITICALCognita Arbitrary File WriteEPSS 1.3%CVE-2026-36829CRITICALAn authentication bypass vulnerability exists in the embedded HTTP server of Panabit PAP-XM320 up to and including v7.7. The server validateEPSS 1.3%CVE-2023-46197MEDIUMWordPress Popup by Supsystic plugin <= 1.10.19 - Unauthenticated Subscriber Email Addresses DisclosureEPSS 1.3%CVE-2024-45178HIGHAn issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user input validation, it is possible to download arEPSS 1.3%CVE-2024-25693CRITICALPortal for ArcGIS has a directory traversal vulnerability.EPSS 1.3%CVE-2025-32799MEDIUMConda-build Vulnerable to Path Traversal via Malicious Tar FileEPSS 1.3%CVE-2021-37713HIGHArbitrary File Creation/Overwrite on Windows via insufficient relative path sanitizationEPSS 1.3%CVE-2024-23899MEDIUMJenkins Git server Plugin 99.va_0826a_b_cdfa_d and earlier does not disable a feature of its command parser that replaces an '@' character fEPSS 1.3%CVE-2025-56816HIGHDatart 1.0.0-rc.3 is vulnerable to Directory Traversal. The configuration file handling of the application allows attackers to upload arbitrEPSS 1.3%CVE-2023-27326HIGHParallels Desktop Toolgate Directory Traversal Local Privilege Escalation VulnerabilityEPSS 1.3%CVE-2025-8426CRITICALMarvell QConvergeConsole compressConfigFiles Directory Traversal Information Disclosure and Denial-of-Service VulnerabilityEPSS 1.3%CVE-2024-13545CRITICALBootstrap Ultimate <= 1.4.9 - Unauthenticated Limited Local File InclusionEPSS 1.3%CVE-2025-6797HIGHMarvell QConvergeConsole getFileUploadBytes Directory Traversal Information Disclosure VulnerabilityEPSS 1.3%