Weaknesses of type CWE-22
4,786 resultsCVE-2022-24878HIGHImproper path handling in Kustomization files allows for denial of serviceEPSS 0.9%CVE-2025-13645HIGHModula 2.13.1 - 2.13.2 - Authenticated (Author+) Arbitrary File DeletionEPSS 0.9%CVE-2025-11939MEDIUMChurchCRM Backup Restore RestoreJob.php path traversalEPSS 0.9%CVE-2026-36227MEDIUMDirectory Traversal vulnerability in Easy Chat Server 3.1 allows a remote attacker to obtain sensitive information and execute arbitrary codEPSS 0.9%CVE-2024-9669HIGHFile Manager Pro – Filester <= 1.8.5 - Authenticated (Administrator+) Local JavaScript File InclusionEPSS 0.9%CVE-2024-51376HIGHDirectory Traversal vulnerability in yeqifu carRental v.1.0 allows a remote attacker to obtain sensitive information via the file/downloadFiEPSS 0.9%CVE-2023-48848HIGHAn arbitrary file read vulnerability in ureport v2.2.9 allows a remote attacker to arbitrarily read files on the server by inserting a craftEPSS 0.9%CVE-2023-23888HIGHWordPress Rank Math SEO plugin <= 1.0.107.2 - Local File Inclusion vulnerabilityEPSS 0.9%CVE-2024-11771MEDIUMPath traversal in Ivanti CSA before version 5.0.5 allows a remote unauthenticated attacker to access restricted functionality.EPSS 0.9%CVE-2025-20374MEDIUMCisco Unified Contact Center Express Arbitrary File Download VulnerabilityEPSS 0.9%CVE-2022-41951HIGHOroPlatform vulnerable to path traversal during temporary file manipulationsEPSS 0.9%CVE-2023-35016MEDIUMIBM Security Verify Governance path traversalEPSS 0.9%CVE-2024-8352HIGHSocial Web Suite – Social Media Auto Post, Social Media Auto Publish <= 4.1.11 - Directory Traversal to Arbitrary File DownloadEPSS 0.9%CVE-2026-22871HIGHGuardDog Path Traversal Vulnerability Leads to Arbitrary File Overwrite and RCEEPSS 0.9%CVE-2023-39339MEDIUMA vulnerability exists on all versions of Ivanti Policy Secure below 22.6R1 where an authenticated administrator can perform an arbitrary fiEPSS 0.9%CVE-2024-7741MEDIUMwanglongcn ltcms API Endpoint downloadfile downloadFile path traversalEPSS 0.9%CVE-2020-15141LOWPath Traversal in openapi-python-clientEPSS 0.9%CVE-2026-3689MEDIUMOpenClaw Canvas Path Traversal Information Disclosure VulnerabilityEPSS 0.9%CVE-2023-1864MEDIUMFANUC ROBOGUIDE-HandlingPRO Path TraversalEPSS 0.9%CVE-2025-4564CRITICALTicketBAI Facturas para WooCommerce <= 3.18 - Unauthenticated Arbitrary File DeletionEPSS 0.9%