Fallos del tipo CWE-22

4761 resultados
CVE-2024-23652CRITICALBuildKit possible host system access from mount stub cleanerEPSS 2.0%CVE-2018-3730mcstatic node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to reaEPSS 2.0%CVE-2023-52332HIGHAllegra serveMathJaxLibraries Directory Traversal Information Disclosure VulnerabilityEPSS 2.0%CVE-2023-29159HIGHDirectory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote unauthenticated attacker to vieEPSS 2.0%CVE-2022-40443MEDIUMAn absolute path traversal vulnerability in ZZCMS 2022 allows attackers to obtain sensitive information via a crafted GET request sent to /oEPSS 2.0%CVE-2020-15229HIGHPath traversal and files overwrite with unsquashfsEPSS 2.0%CVE-2022-30117Concrete 8.5.7 and below as well as Concrete 9.0 through 9.0.2 allow traversal in /index.php/ccm/system/file/upload which could result in anEPSS 2.0%CVE-2023-28413CRITICALDirectory traversal vulnerability in Snow Monkey Forms versions v5.0.6 and earlier allows a remote unauthenticated attacker to obtain sensitEPSS 2.0%CVE-2018-3729localhost-now node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to reEPSS 2.0%CVE-2024-7600HIGHLogsign Unified SecOps Platform Directory Traversal Arbitrary File Deletion VulnerabilityEPSS 2.0%CVE-2024-7603HIGHLogsign Unified SecOps Platform Directory Traversal Arbitrary Directory Deletion VulnerabilityEPSS 2.0%CVE-2017-16187open-device creates a web interface for any device. open-device is vulnerable to a directory traversal issue, giving an attacker access to tEPSS 2.0%CVE-2017-16130exxxxxxxxxxx is an Http eX Frame Google Style JavaScript Guide. exxxxxxxxxxx is vulnerable to a directory traversal issue, giving an attackeEPSS 2.0%CVE-2017-16095serverliujiayi1 is a simple http server. serverliujiayi1 is vulnerable to a directory traversal issue, giving an attacker access to the fileEPSS 2.0%CVE-2017-16178intsol-package is a file server. intsol-package is vulnerable to a directory traversal issue, giving an attacker access to the filesystem byEPSS 2.0%CVE-2017-16102serverhuwenhui is a simple http server. serverhuwenhui is vulnerable to a directory traversal issue, giving an attacker access to the filesyEPSS 2.0%CVE-2017-16184scott-blanch-weather-app is a sample Node.js app using Express 4. scott-blanch-weather-app is vulnerable to a directory traversal issue, givEPSS 2.0%CVE-2017-16219yttivy is a static file server. yttivy is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing EPSS 2.0%CVE-2017-16089serverlyr is a simple http server. serverlyr is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by plEPSS 2.0%CVE-2017-16146mockserve is a file server. mockserve is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "EPSS 2.0%