Fallos del tipo CWE-22
4856 resultadosCVE-2026-33220MEDIUMWeblate: JavaScript localization CDN add-on allows arbitrary local file read outside the repositoryEPSS 0.3%CVE-2026-14636MEDIUMkirilkirkov Ecommerce-CodeIgniter-Bootstrap Vendor Image Manager AddProduct.php do_upload_others_images path traversalEPSS 0.3%CVE-2026-59820MEDIUMLiteLLM: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')EPSS 0.3%CVE-2023-52544MEDIUMVulnerability of file path verification being bypassed in the email module.
Impact: Successful exploitation of this vulnerability may affectEPSS 0.3%CVE-2026-45775MEDIUMDiscourse: Cross-site backup access via path traversal in multisite local backupsEPSS 0.3%CVE-2026-34079HIGHFlatpak affected by arbitrary file deletion on the host filesystemEPSS 0.3%CVE-2026-39345MEDIUMOrangeHRM Affected by Arbitrary File Read via Path Traversal in Email Template LoaderEPSS 0.3%CVE-2026-11467MEDIUMjishenghua jshERP addAccountHeadAndDetail Endpoint AccountHeadService.java path traversalEPSS 0.3%CVE-2025-30470MEDIUMA path handling issue was addressed with improved logic. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 1EPSS 0.3%CVE-2024-32163MEDIUMCMSeasy 7.7.7.9 is vulnerable to code execution.EPSS 0.3%CVE-2026-32055HIGHOpenClaw < 2026.2.26 - Workspace Path Boundary Bypass via Non-existent SymlinkEPSS 0.3%CVE-2026-44068HIGHEA path traversal via incomplete sanitizationEPSS 0.3%CVE-2021-35230MEDIUMUnquoted Path Vulnerability (SMB Login) in Kiwi CatToolsEPSS 0.3%CVE-2026-44594HIGHesm.sh: Path Traversal via package.json browser field allows reading arbitrary server filesEPSS 0.3%CVE-2026-11423CRITICALPath Traversal in Altium Enterprise Server Collaboration Service Allows Privilege EscalationEPSS 0.3%CVE-2026-8643MEDIUMpip can extract console_scripts and gui_scripts outside installation directoryEPSS 0.3%CVE-2026-40090HIGHZarf has a Path Traversal via Malicious Package Metadata.Name — Arbitrary File WriteEPSS 0.3%CVE-2026-35583MEDIUMEmissary has a Path Traversal via Blacklist Bypass in Configuration APIEPSS 0.3%CVE-2026-23521MEDIUMTraccar vulnerable to Path Traversal and External Control of File Name or PathEPSS 0.3%CVE-2026-35496MEDIUMA path traversal vulnerability exists in CubeCart prior to 6.6.0, which may allow a user with an administrative privilege to access higher-lEPSS 0.3%