Weaknesses of type CWE-22
4,786 resultsCVE-2023-35887MEDIUMApache MINA SSHD: Information disclosure bugs with RootedFilesystemEPSS 1.0%CVE-2024-25711HIGHdiffoscope before 256 allows directory traversal via an embedded filename in a GPG file. Contents of any file, such as ../.ssh/id_rsa, may bEPSS 1.0%CVE-2025-55523LOWAn issue in the component /api/download_work_dir_file.py of Agent-Zero v0.8.* allows attackers to execute a directory traversal.EPSS 1.0%CVE-2020-7268MEDIUMMcAfee Email Gateway (MEG) - Path Traversal vulnerabilityEPSS 1.0%CVE-2026-22199HIGHVoltronic Power SNMP Web Pro 1.1 Path Traversal via upload.cgiEPSS 1.0%CVE-2023-47702MEDIUMIBM Security Guardium Key Lifecycle Manager directory traversalEPSS 1.0%CVE-2023-36822MEDIUMUptime Kuma authenticated path traversal via plugin repository name may lead to unavailability or data lossEPSS 1.0%CVE-2021-36425MEDIUMDirectory traversal vulnerability in phpcms 1.9.25 allows remote attackers to delete arbitrary files via unfiltered $file parameter to unlinEPSS 1.0%CVE-2023-40747HIGHDirectory traversal vulnerability exists in A.K.I Software's PMailServer/PMailServer2 products' CGIs included in Internal Simple Webserver. EPSS 1.0%CVE-2020-37034HIGHHelloWeb 2.0 - Arbitrary File DownloadEPSS 1.0%CVE-2024-57669HIGHDirectory Traversal vulnerability in Zrlog backup-sql-file.jar v.3.0.31 allows a remote attacker to obtain sensitive information via the BacEPSS 1.0%CVE-2023-27501HIGHDirectory Traversal vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform EPSS 1.0%CVE-2024-52055HIGHApplication Copy Path Traversal in Wowza Streaming EngineEPSS 1.0%CVE-2023-47473HIGHDirectory Traversal vulnerability in fuwushe.org iFair versions 23.8_ad0 and before allows an attacker to obtain sensitive information via aEPSS 1.0%CVE-2025-5328MEDIUMchshcms mccms Backups.php restore_del path traversalEPSS 1.0%CVE-2022-0072MEDIUMDirectory Traversal in OpenLiteSpeed Web ServerEPSS 1.0%CVE-2023-43648MEDIUMbaserCMS Directory Traversal vulnerability in Form submission data management FeatureEPSS 1.0%CVE-2022-38340CRITICALSafe Software FME Server v2021.2.5, v2022.0.0.2 and below was discovered to contain a Path Traversal vulnerability via the component fmedataEPSS 1.0%CVE-2023-34298HIGHPulse Secure Client SetupService Directory Traversal Local Privilege Escalation VulnerabilityEPSS 1.0%CVE-2026-25770CRITICALWazuh has Privilege Escalation to Root via Cluster Protocol File WriteEPSS 1.0%