Fallos del tipo CWE-22
4857 resultadosCVE-2026-39378MEDIUMnbconvert has an Arbitrary File Read via Path Traversal in HTMLExporter Image EmbeddingEPSS 0.3%CVE-2022-36035HIGHFlux CLI Workload InjectionEPSS 0.3%CVE-2026-41419HIGH4ga Boards: Import Path Traversal Leads to Arbitrary File ReadEPSS 0.3%CVE-2026-44996MEDIUMOpenClaw < 2026.4.15 - Arbitrary Local File Read via Webchat Audio EmbeddingEPSS 0.3%CVE-2024-25859HIGHA path traversal vulnerability in the /path/to/uploads/ directory of Blesta before v5.9.2 allows attackers to takeover user accounts and exeEPSS 0.3%CVE-2025-61654NONEUserInfoCard: Do permission checking when getting counts of global and local edits, new articles and thanksEPSS 0.3%CVE-2026-2864MEDIUMfeng_ha_ha/megagao ssm-erp/production_ssm PictureController.java pictureDelete path traversalEPSS 0.3%CVE-2026-55201HIGHEvil-WinRM - Path Traversal in download_dir() FunctionEPSS 0.3%CVE-2023-33544MEDIUMhawtio 2.17.2 is vulnerable to Path Traversal. it is possible to input malicious zip files, which can result in the high-risk files after deEPSS 0.3%CVE-2026-45565HIGHRoxy-WI: EscapedString validator skips its '..' block when stripping (root cause for several path-traversal/RCE vectors)EPSS 0.3%CVE-2026-40605MEDIUMTautulli Vulnerable to Authenticated Path Traversal in Cache Deletion APIEPSS 0.3%CVE-2026-0651MEDIUMPath Traversal on TP-Link Tapo D235 and C260 via Local httpsEPSS 0.3%CVE-2026-43872MEDIUMactual-server has a path traversal vulnerabilityEPSS 0.3%CVE-2026-39405CRITICALFrappe has Path Transversal via SCORMEPSS 0.3%CVE-2026-6865HIGHImproper Limitation of a Pathname to a Restricted Directory Vulnerability on Multiple ProductsEPSS 0.3%CVE-2026-23485MEDIUMBlinko: Unauthorized Path Traversal File Enumeration - music-metadataEPSS 0.3%CVE-2026-30234MEDIUMOpenProject BIM BCF XML Import: <Snapshot> Path Traversal Leads to Arbitrary Local File Read (AFR)EPSS 0.3%CVE-2024-6618HIGHPath Traversal in Ocean Data Systems Dream ReportEPSS 0.3%CVE-2025-64235MEDIUMWordPress Tuturn plugin < 3.6 - Arbitrary File Download vulnerabilityEPSS 0.3%CVE-2026-2606MEDIUMIBM webMethods API Management fails to validate user input and enables unauthorized arbitrary file readEPSS 0.3%