Fallos del tipo CWE-22
4872 resultadosCVE-2026-47712LOWDulwich doesn't sanitize commit subjects in `porcelain.format_patch`EPSS 0.1%CVE-2025-15066MEDIUMArbitrary File Download through Path Traversal in Innorix WPEPSS 0.1%CVE-2026-13748MEDIUMSnowflake CLI Arbitrary Local File Read and Exfiltration Through Improper File Path RestrictionEPSS 0.1%CVE-2026-58203MEDIUMNestedSecretsSettingsSource follows symlinks outside secrets_dir, enabling local file read and bypassing secrets_dir_max_sizeEPSS 0.1%CVE-2026-58460HIGHreact-native-receive-sharing-intent Path Traversal via _display_nameEPSS 0.1%CVE-2026-15522MEDIUMtugcantopaloglu godot-mcp run_project index.js validatePath path traversalEPSS 0.1%CVE-2026-15526MEDIUMaugmnt augments-mcp-server scan_project_deps scan-project-deps.ts scanProjectDeps path traversalEPSS 0.1%CVE-2026-15521MEDIUMmakafeli n8n-workflow-builder update_node_from_file server.cjs path traversalEPSS 0.1%CVE-2026-15524MEDIUMalioshr memory-bank-mcp list-project-files-validation-factory.ts path traversalEPSS 0.1%CVE-2026-59946MEDIUMComposer: Path traversal in package bin field lets dependencies chmod arbitrary host filesEPSS 0.1%CVE-2026-28482HIGHOpenClaw < 2026.2.12 - Path Traversal via Unsanitized sessionId and sessionFile ParametersEPSS 0.1%CVE-2026-57966MEDIUMSpice-vdagent: path traversal in file transfer via unsanitized filenameEPSS 0.1%CVE-2026-49406MEDIUMDeno: BYONM module resolution allows `package.json` main path traversal to bypass `--allow-read` restrictionsEPSS 0.1%CVE-2026-44171MEDIUMMariaDB: path traversal in mbstreamEPSS 0.1%CVE-2026-28457MEDIUMOpenClaw < 2026.2.14 - Path Traversal in Sandbox Skill Mirroring via Name ParameterEPSS 0.1%CVE-2022-20505MEDIUMIn openFile of CallLogProvider.java, there is a possible permission bypass due to a path traversal error. This could lead to local escalatioEPSS 0.1%CVE-2026-50207HIGHLocal Modem Manipulation via Binder InterfacesEPSS 0.1%CVE-2026-22926HIGHOmnissa Workspace ONE® Assist for macOS contains a Local Privilege Escalation Vulnerability.EPSS 0.1%CVE-2026-59948HIGHComposer: Arbitrary file write outside vendor via malicious transitive package nameEPSS 0.1%CVE-2025-11565HIGHCWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause elevated systemEPSS 0.1%