Fallos del tipo CWE-23
424 resultadosCVE-2024-11311CRITICALTRCore DVC - Arbitrary File Upload through Path TraversalEPSS 1.3%CVE-2024-11314CRITICALTRCore DVC - Arbitrary File Upload through Path TraversalEPSS 1.3%CVE-2022-38202HIGHBUG-000152121 - Directory traversal vulnerability in ArcGIS Server.EPSS 1.3%CVE-2022-39345CRITICALGin-vue-admin arbitrary file upload vulnerability caused by path traversalEPSS 1.3%CVE-2021-43176—The GOautodial API prior to commit 3c3a979 made on October 13th, 2021 takes a user-supplied “action” parameter and appends a .php file extenEPSS 1.3%CVE-2024-11067HIGHD-Link DSL6740C - Arbitrary File Reading through Path TraversalEPSS 1.3%CVE-2019-11822MEDIUMRelative path traversal vulnerability in SYNO.PhotoStation.File in Synology Photo Station before 6.8.11-3489 and before 6.3-2977 allows remoEPSS 1.3%CVE-2025-27553HIGHApache Commons VFS: Possible path traversal issue when using NameScope.DESCENDENTEPSS 1.3%CVE-2023-2913HIGHRockwell Automation ThinManager ThinServer Path Traversal VulnerabilityEPSS 1.3%CVE-2023-33144MEDIUMVisual Studio Code Spoofing VulnerabilityEPSS 1.3%CVE-2023-20040MEDIUMA vulnerability in the NETCONF service of Cisco Network Services Orchestrator (NSO) could allow an authenticated, remote attacker to cause aEPSS 1.2%CVE-2019-19287—A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow attackers to traverse through the file systemEPSS 1.2%CVE-2022-20862MEDIUMCisco Unified Communications Manager Arbitrary File Read VulnerabilityEPSS 1.2%CVE-2026-25951HIGHFUXA has a Path Traversal Sanitization BypassEPSS 1.2%CVE-2022-29097MEDIUMDell WMS 3.6.1 and below contains a Path Traversal vulnerability in Device API. A remote attacker could potentially exploit this vulnerabiliEPSS 1.2%CVE-2021-41152HIGHPath Traversal in Folder Component Leading to Local File InclusionEPSS 1.2%CVE-2022-3162MEDIUMUnauthorized read of Custom ResourcesEPSS 1.2%CVE-2021-29100HIGHArcGIS Earth has a File Parsing Directory Traversal VulnerabilityEPSS 1.1%CVE-2021-24035—A lack of filename validation when unzipping archives prior to WhatsApp for Android v2.21.8.13 and WhatsApp Business for Android v2.21.8.13 EPSS 1.1%CVE-2020-7376HIGHRapid7 Metasploit Framework Relative Path Traversal in enum_osx moduleEPSS 1.1%