Weaknesses of type CWE-61
144 resultsCVE-2026-27976HIGHZed Extension Sandbox Escape via Tar Symlink FollowingEPSS 0.5%CVE-2025-68937CRITICALForgejo before 13.0.2 allows attackers to write to unintended files, and possibly obtain server shell access, because of mishandling of out-EPSS 0.5%CVE-2025-23394CRITICALdaily-backup.sh script in cyrus-imapd allows escalation from cyrus to rootEPSS 0.5%CVE-2026-52811CRITICALGogs: UploadRepoFiles writes outside repo working tree via committed parent symEPSS 0.5%CVE-2024-45418MEDIUMZoom Apps for macOS - Symbolic Link FollowingEPSS 0.4%CVE-2021-25321HIGHarpwatch: Local privilege escalation from runtime user to rootEPSS 0.4%CVE-2021-25322MEDIUMpython-HyperKitty: hyperkitty-permissions.sh used during %post allows local privilege escalation from hyperkitty user to rootEPSS 0.4%CVE-2025-24886HIGHpwn.college has Symlink LFI in Dojo reposEPSS 0.4%CVE-2026-24047MEDIUM@backstage/cli-common has a possible `resolveSafeChildPath` Symlink Chain BypassEPSS 0.4%CVE-2025-10854HIGHSymlink Following in txtai leads to arbitrary file write when loading untrusted embedding indicesEPSS 0.4%CVE-2026-41937HIGHVvveb < 1.0.8.3 Unrestricted File Upload RCE via Plugin UploadEPSS 0.4%CVE-2026-35525HIGHLiquidJS has a root restriction bypass for partial and layout loading through symlinked templatesEPSS 0.4%CVE-2021-32557MEDIUMapport process_report() arbitrary file writeEPSS 0.4%CVE-2025-59829LOWClaude Code: Permission deny bypass is possible through symlinkEPSS 0.4%CVE-2026-49248HIGHOneDev: RCE through absolute-path symlink following allows low-privileged users to overwrite arbitrary server via TarUtils.untarEPSS 0.4%CVE-2026-33056MEDIUMtar-rs: unpack_in can chmod arbitrary directories by following symlinksEPSS 0.4%CVE-2026-25724LOWClaude Code Has Permission Deny Bypass Through Symbolic LinksEPSS 0.4%CVE-2024-0134MEDIUMNVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted container image can lead tEPSS 0.4%CVE-2025-57802HIGHAirlink's Daemon Symlink VulnerabilityEPSS 0.4%CVE-2026-7819HIGHpgAdmin 4: Symbolic-link path traversal in File Manager allows arbitrary file writeEPSS 0.4%