Fallos del tipo CWE-22

4841 resultados
CVE-2023-41302Redirection permission verification vulnerability in the home screen module. Successful exploitation of this vulnerability may cause featureEPSS 0.5%CVE-2019-10152HIGHA path traversal vulnerability has been discovered in podman before version 1.4.0 in the way it handles symlinks inside containers. An attacEPSS 0.5%CVE-2026-14327HIGHAR for WordPress <= 8.40 - Unauthenticated Arbitrary File Read via 'file' ParameterEPSS 0.5%CVE-2025-14344CRITICALMulti Uploader for Gravity Forms <= 1.1.7 - Unauthenticated Arbitrary File DeletionEPSS 0.5%CVE-2023-25606MEDIUMAn improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-23] in FortiAnalyzer and FortiManager mEPSS 0.5%CVE-2026-39407MEDIUMHono has a middleware bypass via repeated slashes in serveStaticEPSS 0.5%CVE-2024-6791HIGHDirectory Path Traversal Vulnerability in NI VeriStand with vsmodel FilesEPSS 0.5%CVE-2019-3696HIGHpcp: Local privilege escalation from user pcp to root through migrate_tempdirsEPSS 0.5%CVE-2023-6120MEDIUMWelcart e-Commerce <= 2.9.6 - Authenticated (Administrator+) Directory TraversalEPSS 0.5%CVE-2025-51463HIGHPath Traversal in restore_run_backup() in AIM 3.28.0 allows remote attackers to write arbitrary files to the server's filesystem via a craftEPSS 0.5%CVE-2025-62449MEDIUMMicrosoft Visual Studio Code CoPilot Chat Extension Security Feature Bypass VulnerabilityEPSS 0.5%CVE-2025-55295MEDIUMqBit Manage Path Traversal VulnerabilityEPSS 0.5%CVE-2025-68901HIGHWordPress Anona theme <= 8.0 - Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2025-8753MEDIUMlinlinjava litemall File delete path traversalEPSS 0.5%CVE-2025-3214MEDIUMJFinal CMS readTemplate engine.getTemplate path traversalEPSS 0.5%CVE-2026-52756MEDIUMGhidra < 12.2 - Unauthenticated Path Traversal in Debugger ISF ServerEPSS 0.5%CVE-2024-0980HIGHThe Auto-update service for Okta Verify for Windows is vulnerable to two flaws which in combination could be used to execute arbitrary code.EPSS 0.5%CVE-2025-69377HIGHWordPress User Extra Fields plugin <= 17.0 - Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2025-13677MEDIUMSimple Download Counter <= 2.2.2 - Authenticated (Administrator+) Arbitrary File Read via Path TraversalEPSS 0.5%CVE-2026-25691MEDIUMA improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5,EPSS 0.5%