Weaknesses of type CWE-22

4,775 results
CVE-2022-31159HIGHPartial Path Traversal in com.amazonaws:aws-java-sdk-s3 EPSS 1.2%CVE-2023-24836HIGHSUNNET CTMS - Path TraversalEPSS 1.2%CVE-2024-10902CRITICALArbitrary File Upload with Path Traversal in eosphoros-ai/db-gptEPSS 1.2%CVE-2024-22851HIGHDirectory Traversal Vulnerability in LiveConfig before v.2.5.2 allows a remote attacker to obtain sensitive information via a crafted requesEPSS 1.2%CVE-2024-27318HIGHVersions of the package onnx before and including 1.15.0 are vulnerable to Directory Traversal as the external_data field of the tensor protEPSS 1.2%CVE-2023-24455MEDIUMJenkins visualexpert Plugin 1.3 and earlier does not restrict the names of files in methods implementing form validation, allowing attackersEPSS 1.2%CVE-2023-28406MEDIUMBIG-IP Configuration utility vulnerabilityEPSS 1.2%CVE-2023-5245HIGHUsing MLeap for loading a saved model (zip archive) can lead to path traversal/arbitrary file creation and possibly remote code execution.EPSS 1.2%CVE-2023-6577MEDIUMByzoro PatrolFlow 2530Pro mailsendview.php path traversalEPSS 1.2%CVE-2025-4517CRITICALArbitrary writes via tarfile realpath overflowEPSS 1.2%CVE-2024-7564MEDIUMLogsign Unified SecOps Platform Directory Traversal Information Disclosure VulnerabilityEPSS 1.2%CVE-2025-58751LOWVite middleware may serve files starting with the same name with the public directoryEPSS 1.2%CVE-2022-47768HIGHSerenissima Informatica Fast Checkin 1.0 is vulnerable to Directory Traversal.EPSS 1.2%CVE-2021-21298LOWPath traversal in Node-RedEPSS 1.2%CVE-2023-46749MEDIUMApache Shiro before 1.13.0 or 2.0.0-alpha-4, may be susceptible to a path traversal attack that results in an authentication bypass when used together with path rewriting EPSS 1.2%CVE-2021-33726A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to download arbitrary files EPSS 1.2%CVE-2026-34070HIGHLangChain Core has Path Traversal vulnerabilites in legacy `load_prompt` functionsEPSS 1.2%CVE-2022-45969CRITICALAlist v3.4.0 is vulnerable to Directory Traversal,EPSS 1.2%CVE-2022-45093HIGHA vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 1). An authenticated remote attacker with access to the WebEPSS 1.2%CVE-2022-39034MEDIUMSmart eVision - Path Traversal -2EPSS 1.2%