Falhas do tipo CWE-22

4.806 resultados
CVE-2026-4853MEDIUMJetBackup <= 3.1.19.8 - Authenticated (Administrator+) Arbitrary Directory Deletion via Path Traversal in 'fileName' ParameterEPSS 0.7%CVE-2026-33054CRITICALMesop: Path Traversal utilizing `FileStateSessionBackend` leads to Application Denial of Service and File Write/DeletionEPSS 0.7%CVE-2022-45447MEDIUMPath Traversal in M4 PDF plugin for Prestashop sitesEPSS 0.7%CVE-2024-8438HIGHPath Traversal in modelscope/agentscopeEPSS 0.7%CVE-2026-31817HIGHOliveTin's unsafe parsing of UniqueTrackingId can be used to write filesEPSS 0.7%CVE-2024-1594HIGHLocal File Read via Path Traversal in mlflow/mlflowEPSS 0.7%CVE-2026-37531CRITICALAGL app-framework-main thru 17.1.12 contains a Zip Slip path traversal vulnerability (CWE-22) combined with a TOCTOU race condition (CWE-367EPSS 0.7%CVE-2023-29104MEDIUMA vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC716 (All versiEPSS 0.7%CVE-2026-33929MEDIUMApache PDFBox Examples: Path Traversal in PDFBox ExtractEmbeddedFiles Example CodeEPSS 0.7%CVE-2023-32177HIGHVIPRE Antivirus Plus DeleteHistoryFile Directory Traversal Local Privilege Escalation VulnerabilityEPSS 0.7%CVE-2025-25652HIGHIn Eptura Archibus 2024.03.01.109, the "Run script" and "Server File" components of the "Database Update Wizard" are vulnerable to directoryEPSS 0.7%CVE-2025-66051MEDIUMPath traversal in Vivotek IP7137 camerasEPSS 0.7%CVE-2023-32176HIGHVIPRE Antivirus Plus SetPrivateConfig Directory Traversal Local Privilege Escalation VulnerabilityEPSS 0.7%CVE-2026-11420CRITICALPath Traversal in Altium Enterprise Server NIS Allows Unauthenticated Arbitrary File Write and File ReadEPSS 0.7%CVE-2025-2193MEDIUMMRCMS org.marker.mushroom.controller.FileController delete.do delete path traversalEPSS 0.7%CVE-2023-22776MEDIUMAuthenticated Remote Path Traversal in ArubaOS Command Line Interface Allows for Arbitrary File ReadEPSS 0.7%CVE-2025-66429HIGHAn issue was discovered in cPanel 110 through 132. A directory traversal vulnerability within the Team Manager API allows for overwrite of aEPSS 0.7%CVE-2025-25295HIGHLabel Studio has a Path Traversal Vulnerability via image FieldEPSS 0.7%CVE-2025-12092MEDIUMCYAN Backup <= 2.5.4 - Authenticated (Admin+) Arbitrary File DeletionEPSS 0.7%CVE-2024-56514MEDIUMKarmada Tar Slips in CRDs archive extractionEPSS 0.7%