Weaknesses of type CWE-22
4,790 resultsCVE-2024-13897MEDIUMMoving Media Library <= 1.22 - Authenticated (Administrator+) Directory Traversal to Arbitrary File DeletionEPSS 0.9%CVE-2024-27765MEDIUMDirectory Traversal vulnerability in Jeewms v.3.7 and before allows a remote attacker to obtain sensitive information via the cgformTemplateEPSS 0.9%CVE-2024-8704HIGHAdvanced File Manager <= 5.2.8 - Authenticated (Administrator+) Local JavaScript File Inclusion via fma_localeEPSS 0.9%CVE-2024-46645HIGHeNMS 4.0.0 is vulnerable to Directory Traversal via get_tree_files.EPSS 0.9%CVE-2015-10024MEDIUMhoffie larasync file_storage.go path traversalEPSS 0.9%CVE-2025-27718HIGHImproper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in the file upload process of the USB storage fiEPSS 0.9%CVE-2022-4065MEDIUMcbeust testng XML File Parser JarFileUtils.java testngXmlExistsInJar path traversalEPSS 0.9%CVE-2021-47795HIGHGeoVision Geowebserver 5.3.3 - Local FIle InclusionEPSS 0.9%CVE-2022-4636HIGHBlack Box KVM Firmware version 3.4.31307 on models ACR1000A-R-R2, ACR1000A-T-R2, ACR1002A-T, ACR1002A-R, and ACR1020A-T is vulnerable to patEPSS 0.9%CVE-2025-22926CRITICALAn issue in OS4ED openSIS v8.0 through v9.1 allows attackers to execute a directory traversal by sending a crafted POST request to /Modules.EPSS 0.9%CVE-2022-50950HIGHWebile 1.0.1 Directory Traversal Vulnerability via Web ApplicationEPSS 0.9%CVE-2025-69612MEDIUMA path traversal vulnerability exists in TMS Management Console (version 6.3.7.27386.20250818) from TMS Global Software. The "Download TemplEPSS 0.9%CVE-2024-23904HIGHJenkins Log Command Plugin 1.0.2 and earlier does not disable a feature of its command parser that replaces an '@' character followed by a fEPSS 0.9%CVE-2022-42136HIGHAuthenticated mail users, under specific circumstances, could add files with unsanitized content in public folders where the IIS user had peEPSS 0.9%CVE-2024-3078MEDIUMQdrant Full Snapshot REST API snapshots.rs path traversalEPSS 0.9%CVE-2026-34607HIGHEmlog: Path Traversal in emUnZip() allows arbitrary file write leading to RCEEPSS 0.9%CVE-2024-24756HIGHCrafatar path traversal vulnerabilityEPSS 0.9%CVE-2024-35474MEDIUMA Directory Traversal vulnerability in iceice666 ResourcePack Server before v1.0.8 allows a remote attacker to disclose files on the server,EPSS 0.9%CVE-2024-12065HIGHLocal File Inclusion in haotian-liu/llavaEPSS 0.9%CVE-2024-11952HIGHClassic Addons – WPBakery Page Builder <= 3.0 - Authenticated (Contributor+) Limited Local PHP File InclusionEPSS 0.9%