Fallos del tipo CWE-22
4828 resultadosCVE-2026-28792CRITICALCross-Origin File Exfiltration via CORS Misconfiguration + Path Traversal in TinaCMSEPSS 0.5%CVE-2025-58158HIGHHarness Affected by Arbitrary File Write in Gitness LFS serverEPSS 0.5%CVE-2024-47877MEDIUMExtract has insufficient checks allowing attacker to create symlinks outside the extraction directory.EPSS 0.5%CVE-2025-45691HIGHAn Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0.2.3 to v0.2.14. The vulnerabilEPSS 0.5%CVE-2025-8895CRITICALWP Webhooks <= 3.3.5 - Unauthenticated Arbitrary File CopyEPSS 0.5%CVE-2025-5741MEDIUMCWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that
could cause arbitrary file EPSS 0.5%CVE-2026-30278CRITICALAn arbitrary file overwrite vulnerability in FLY is FUN Aviation Navigation v35.33 allows attackers to overwrite critical internal files viaEPSS 0.5%CVE-2025-0703MEDIUMJoeyBling bootplus SysFileController.java path traversalEPSS 0.5%CVE-2025-69139HIGHWordPress Car Zone theme <= 3.7 - Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2025-24965HIGH.krun_config.json symlink attack creates or overwrites file on the host in crunEPSS 0.5%CVE-2024-12362MEDIUMInvoicePlane invoices.php download path traversalEPSS 0.5%CVE-2026-30828HIGHWallos: SSRF via url parameter leading to File TraversalEPSS 0.5%CVE-2025-2215MEDIUMDoufox s=doudou path traversalEPSS 0.5%CVE-2023-3698HIGHA Command injection vulnerability was found on Printer service of ADMEPSS 0.5%CVE-2022-46902MEDIUMAn issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is a Path Traversal for an Unzip operation. The VoceEPSS 0.5%CVE-2026-3013HIGHPath Traversal in Coppermine Photo GalleryEPSS 0.5%CVE-2026-39408MEDIUMHono has a path traversal in toSSG() allows writing files outside the output directoryEPSS 0.5%CVE-2024-3783HIGHPath Traversal vulnerability in WBSAirbackEPSS 0.5%CVE-2022-41780MEDIUMF5OS CLI vulnerability CVE-2022-41780EPSS 0.5%CVE-2024-37268HIGHWordPress Striking theme <= 2.3.4 - Local File Inclusion vulnerabilityEPSS 0.5%