Fallos del tipo CWE-22
4828 resultadosCVE-2025-70950HIGHAn issue in gohttp commit 34ea51 allows attackers to execute a directory traversal via supplying a crafted request.EPSS 0.5%CVE-2026-44542CRITICALFileBrowser Quantum: Unauthenticated Path Traversal in Public Share Delete Allows Arbitrary File DeletionEPSS 0.5%CVE-2025-6772MEDIUMeosphoros-ai db-gpt import import_flow path traversalEPSS 0.5%CVE-2024-50626HIGHAn issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker EPSS 0.5%CVE-2025-27101HIGHBroken Access Control in Opal filesystem's copy functionality exposes all user dataEPSS 0.5%CVE-2019-3828MEDIUMAnsible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outEPSS 0.5%CVE-2026-23850HIGHSiYuan vulnerable to arbitrary file readEPSS 0.5%CVE-2024-44013HIGHWordPress VR Calendar plugin <= 2.4.0 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2026-13369HIGHNinja Forms - File Uploads <= 3.3.29 - Unauthenticated Arbitrary File Read via File Upload Field 'files[].data.file_path' ParameterEPSS 0.5%CVE-2025-3562MEDIUMYonyou YonBIP userfile FileInputStream path traversalEPSS 0.5%CVE-2025-28354MEDIUMAn issue in the Printer Manager Systm of Entrust Corp Printer Manager D3.18.4-3 and below allows attackers to execute a directory traversal EPSS 0.5%CVE-2026-6321HIGHfast-uri vulnerable to path traversal via percent-encoded dot segmentsEPSS 0.5%CVE-2025-9435MEDIUMPath TraversalEPSS 0.5%CVE-2024-39621HIGHWordPress ListingPro plugin <= 2.9.4 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2026-42608HIGHGrav: Unauthenticated Path Traversal & Arbitrary File Write in FormFlash component.EPSS 0.5%CVE-2025-31827MEDIUMWordPress Fonto plugin <= 1.2.2 - Arbitrary File Download vulnerabilityEPSS 0.5%CVE-2025-59380MEDIUMQTS, QuTS heroEPSS 0.5%CVE-2026-30914MEDIUMSFTPGo has a Path Traversal and Permission Bypass via Path Normalization DiscrepancyEPSS 0.5%CVE-2026-10732MEDIUMAll versions of the package decompress are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) when extracting a ZIP archivEPSS 0.5%CVE-2025-11366CRITICALN-central Authentication bypass via path traversalEPSS 0.5%