Fallos del tipo CWE-22
4828 resultadosCVE-2026-23949HIGHjaraco.context Has a Path Traversal VulnerabilityEPSS 0.5%CVE-2024-20527MEDIUMCisco Identity Services Engine Arbitrary File Read and Delete VulnerabilityEPSS 0.5%CVE-2026-6670MEDIUMMedia Sync <= 1.4.9 - Authenticated (Author+) Path Traversal via 'sub_dir' and 'media_items' ParametersEPSS 0.5%CVE-2025-31825MEDIUMWordPress Category Icon plugin <= 1.0.1 - Arbitrary File Download vulnerabilityEPSS 0.5%CVE-2024-20529MEDIUMCisco Identity Services Engine Arbitrary File Read and Delete VulnerabilityEPSS 0.5%CVE-2025-21095MEDIUMKeysight Ixia Vision Product Family Path TraversalEPSS 0.5%CVE-2024-39624HIGHWordPress ListingPro theme <= 2.9.4 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2025-13262MEDIUMlsfusion platform UploadFileRequestHandler.java UploadFileRequestHandler path traversalEPSS 0.5%CVE-2024-37092HIGHWordPress Consulting Elementor Widgets plugin <= 1.3.0 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2025-12922MEDIUMOpenClinica Community Edition CRF Data Import ImportCRFData path traversalEPSS 0.5%CVE-2025-48026HIGHA vulnerability in the WebApl component of Mitel OpenScape Xpressions through V7R1 FR5 HF43 P913 could allow an unauthenticated attacker to EPSS 0.5%CVE-2024-49780MEDIUMIBM OpenPages path traversalEPSS 0.5%CVE-2026-12198MEDIUMMicroweber API Endpoint thumbnail_img userfiles_path path traversalEPSS 0.5%CVE-2024-43135HIGHWordPress WPCafe plugin <= 2.2.28 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2025-51481MEDIUMLocal File Inclusion in dagster._grpc.impl.get_notebook_data in Dagster 1.10.14 allows attackers with access to the gRPC server to read arbiEPSS 0.5%CVE-2023-24804MEDIUMownCloud Android app vulnerable to Path TraversalEPSS 0.5%CVE-2024-7609CRITICALDirectory Traversal in Vidco Software's VOC TESTEREPSS 0.5%CVE-2024-36427HIGHThe file-serving function in TARGIT Decision Suite before 24.06.19002 (TARGIT Decision Suite 2024 – June) allows authenticated attackers to EPSS 0.5%CVE-2024-50626HIGHAn issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker EPSS 0.5%CVE-2024-33568HIGHWordPress Element Pack Pro plugin < 7.19.3 - Arbitrary File Read and Phar Deserialization vulnerabilityEPSS 0.5%