Falhas do tipo CWE-22
4.704 resultadosCVE-2024-23472CRITICALSolarWinds Access Rights Manager Directory Traversal Arbitrary File Deletion and Information Disclosure VulnerabilityEPSS 18.6%CVE-2024-4956HIGHNexus Repository 3 - Path TraversalEPSS 18.2%CVE-2024-50324HIGHPath traversal in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authentiEPSS 18.2%CVE-2024-34787HIGHPath traversal in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a local unauthentEPSS 17.9%CVE-2022-2863—WPvivid Backup < 0.9.76 - Admin+ Arbitrary File ReadEPSS 17.7%CVE-2019-25246HIGHBeward N100 H.264 VGA IP Camera M2.1.6 Authenticated File DisclosureEPSS 17.4%CVE-2023-42657CRITICALWS_FTP Server Directory TraversalEPSS 17.0%CVE-2024-7928MEDIUMFastAdmin lang path traversalEPSS 16.9%CVE-2022-0902HIGHABB Flow Computer and Remote Controllers Path Traversal Vulnerability in Totalflow TCP protocol can lead to root accessEPSS 16.4%CVE-2023-1009MEDIUMDrayTek Vigor 2960 Web Management Interface mainfunction.cgi sub_1DF14 path traversalEPSS 15.7%CVE-2024-9381HIGHPath traversal in Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to bypass restrictions.EPSS 15.7%CVE-2026-22557CRITICALA malicious actor with access to the network could exploit a Path Traversal vulnerability found in the UniFi Network Application to access fEPSS 15.6%CVE-2022-47945CRITICALThinkPHP Framework before 6.0.14 allows local file inclusion via the lang parameter when the language pack feature is enabled (lang_switch_oEPSS 15.5%CVE-2018-1002204—adm-zip npm library before 0.4.9 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slaEPSS 15.4%CVE-2016-6321HIGHDirectory traversal vulnerability in the safer_name_suffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an iEPSS 15.2%CVE-2025-59366CRITICALAn authentication-bypass vulnerability exists in AiCloud. This vulnerability can be triggered by an unintended side effect of the Samba funcEPSS 15.1%CVE-2021-32804HIGHArbitrary File Creation/Overwrite due to insufficient absolute path sanitizationEPSS 15.0%CVE-2024-44625HIGHGogs <=0.13.0 is vulnerable to Directory Traversal via the editFilePost function of internal/route/repo/editor.go.EPSS 14.9%CVE-2024-48884HIGHA improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiManager 7.6.0 through 7.6.1,EPSS 14.9%CVE-2025-61686CRITICALReact Router has Path Traversal in File Session StorageEPSS 14.8%