Fallos del tipo CWE-22

4856 resultados
CVE-2025-64230HIGHWordPress Filr plugin <= 1.2.10 - Arbitrary File Deletion vulnerabilityEPSS 0.3%CVE-2026-23535HIGHwlc Path traversal: Unsanitized API slugs in download commandEPSS 0.3%CVE-2026-12089MEDIUMWS Optimize – All-in-One Speed Booster & Cache Tools <= 3.3.19 - Authenticated (Editor+) Arbitrary File ReadEPSS 0.3%CVE-2026-44566HIGHOpen WebUI: Arbitrary File Upload and Path TraversalEPSS 0.3%CVE-2026-56394HIGHCraft CMS - Authenticated Path Traversal in assets/icon Extension ParameterEPSS 0.3%CVE-2026-32193HIGHAzure Kubernetes Service (AKS) Remote Code Execution VulnerabilityEPSS 0.3%CVE-2026-23484MEDIUMBlinko: Authenticated Arbitrary File Write - saveDevPluginEPSS 0.3%CVE-2023-41057MEDIUMImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in hyper-bump-itEPSS 0.3%CVE-2026-41245MEDIUMJunrar: Path Traversal (Zip-Slip) via Sibling Directory Name PrefixEPSS 0.3%CVE-2026-42756CRITICALWordPress QuickWebP – Compress / Optimize Images & Convert WebP | SEO Friendly plugin <= 3.2.7 - Arbitrary File Deletion vulnerabilityEPSS 0.3%CVE-2025-27098MEDIUMUnwanted access to the entire file system vulnerability due to a missing check in `staticFiles` HTTP handler in graphql-meshEPSS 0.3%CVE-2026-48126HIGHAlgernon: Host header path traversal in --domain mode reads files and runs Lua from parent dirEPSS 0.3%CVE-2026-33493HIGHAVideo has a Path Traversal in import.json.php that Allows Private Video Theft and Arbitrary File Read/Deletion via fileURI ParameterEPSS 0.3%CVE-2026-45017HIGHPython Liquid: Absolute paths escape filesystem loader search pathEPSS 0.3%CVE-2026-32033MEDIUMOpenClaw < 2026.2.24 - Path Traversal via @-prefixed Absolute Paths in Workspace Boundary ValidationEPSS 0.3%CVE-2026-6903HIGHPath Traversal Vulnerability in LabOne User InterfaceEPSS 0.3%CVE-2026-55111HIGHA malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi Protect Floodlight devices to accesEPSS 0.3%CVE-2018-25421HIGHOpen STA Manager 2.3 Arbitrary File Download via Path TraversalEPSS 0.3%CVE-2026-39308HIGHPraisonAI recipe registry publish path traversal allows out-of-root file writeEPSS 0.3%CVE-2025-8406MEDIUMPath Traversal in zenml-io/zenmlEPSS 0.3%