Weaknesses of type CWE-22
4,783 resultsCVE-2023-4760HIGHRemote Code Execution in Eclipse RAP on WindowsEPSS 1.0%CVE-2024-11642CRITICALPost Grid Master <= 3.4.12 - Missing Authorization to Unauthenticated Local PHP File InclusionEPSS 1.0%CVE-2024-1303MEDIUMMultiple Vulnerabilities in Badger Meter's MonitoolEPSS 1.0%CVE-2023-49508MEDIUMDirectory Traversal vulnerability in YetiForceCompany YetiForceCRM versions 6.4.0 and before allows a remote authenticated attacker to obtaiEPSS 1.0%CVE-2022-23609HIGHPath traveresal in iTunesRPC-RemasteredEPSS 1.0%CVE-2024-7514MEDIUMWordPress Comments Import & Export <= 2.3.7 - Authenticated (Author+) Arbitrary File Read via Directory TraversalEPSS 1.0%CVE-2021-35968MEDIUMLearningdigital.com, Inc. Orca HCM - Path Traversal-2EPSS 1.0%CVE-2024-1961HIGHPath Traversal leading to Arbitrary File Write and RCE in vertaai/modeldbEPSS 1.0%CVE-2024-58312HIGHxbtitFM 4.1.18 Unauthenticated Path Traversal in nfogen.phpEPSS 1.0%CVE-2023-22914HIGHA path traversal vulnerability in the “account_print.cgi” CGI program of Zyxel USG FLEX series firmware versions 4.50 through 5.35, and VPN EPSS 1.0%CVE-2024-7037MEDIUMArbitrary File Write/Delete Leading to RCE in open-webui/open-webuiEPSS 1.0%CVE-2023-5414CRITICALIcegram Express <= 5.6.23 - Authenticated (Administrator+) Directory Traversal to Arbitrary File ReadEPSS 1.0%CVE-2018-16739HIGHAn issue was discovered on certain ABUS TVIP devices. Due to a path traversal in /opt/cgi/admin/filewrite, an attacker can write to files, aEPSS 1.0%CVE-2025-62522MEDIUMvite allows server.fs.deny bypass via backslash on WindowsEPSS 1.0%CVE-2023-23760MEDIUMPath traversal in GitHub Enterprise Server leading to remote code executionEPSS 1.0%CVE-2021-3823HIGHPath traversal vulnerability in Bitdefender GravitZone Update Server in relay modeEPSS 1.0%CVE-2022-40199LOWDirectory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 to 3.0.18-p4 ) and EC-CUBE 4 series (EC-CUBE 4.0.0 to 4.1.2) allows a rEPSS 1.0%CVE-2026-30869CRITICALSiYuan has a Path Traversal in /export Endpoint Allows Arbitrary File Read and Secret LeakageEPSS 1.0%CVE-2024-7565HIGHSMARTBEAR SoapUI unpackageAll Directory Traversal Remote Code Execution VulnerabilityEPSS 1.0%CVE-2022-47951MEDIUMAn issue was discovered in OpenStack Cinder before 19.1.2, 20.x before 20.0.2, and 21.0.0; Glance before 23.0.1, 24.x before 24.1.1, and 25.EPSS 1.0%