Weaknesses of type CWE-22
4,787 resultsCVE-2019-25471CRITICALFileThingie 2.5.7 Arbitrary File Upload via ft2.phpEPSS 0.9%CVE-2023-22901MEDIUMChangingTec MOTP - Path TraversalEPSS 0.9%CVE-2025-1106MEDIUMCmsEasy database_admin.php restore_action path traversalEPSS 0.9%CVE-2023-29004MEDIUMPath Traversal Vulnerability in hap-wi/roxy-wi EPSS 0.9%CVE-2024-0763HIGHImproper validation of document removal parameterEPSS 0.9%CVE-2026-4659HIGHUnlimited Elements For Elementor <= 2.0.6 - Authenticated (Contributor+) Arbitrary File Read via Path Traversal in Repeater JSON/CSV URL with Path TraversalEPSS 0.9%CVE-2022-35235MEDIUMWordPress WPide plugin <= 2.6 - Authenticated Arbitrary File Read vulnerabilityEPSS 0.9%CVE-2024-7145HIGHJetElements <= 2.6.20 - Authenticated (Contributor+) Arbitrary Local File InclusionEPSS 0.9%CVE-2024-22398MEDIUMAn improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability in SonicWall Email Security Appliance could alEPSS 0.9%CVE-2024-3737MEDIUMcym1102 nginxWebUI addOver findCountByQuery path traversalEPSS 0.9%CVE-2024-8581CRITICALPath Traversal in parisneo/lollms-webuiEPSS 0.9%CVE-2017-20152LOWaerouk imageserve File viewer.php path traversalEPSS 0.9%CVE-2025-14306CRITICALDirectory Traversal in Robocode's CacheCleaner ComponentEPSS 0.9%CVE-2022-3060HIGHImproper control of a resource identifier in Error Tracking in GitLab CE/EE affecting all versions from 12.7 allows an authenticated attackeEPSS 0.9%CVE-2021-32842MEDIUMPath Traversal in SharpZipLibEPSS 0.9%CVE-2022-41712MEDIUMFrappe version 14.10.0 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does nEPSS 0.9%CVE-2025-11018MEDIUMFour-Faith Water Conservancy Informatization Platform download.do;usrlogout.do.do path traversalEPSS 0.9%CVE-2025-10709MEDIUMFour-Faith Water Conservancy Informatization Platform historyDownload.do;otheruserLogin.do;getfile path traversalEPSS 0.9%CVE-2025-10708MEDIUMFour-Faith Water Conservancy Informatization Platform historyDownload.do;usrlogout.do path traversalEPSS 0.9%CVE-2024-47464MEDIUMAuthenticated Path Traversal Vulnerability Leads to a Remote Unauthorized Access to FilesEPSS 0.9%