Falhas do tipo CWE-22

4.827 resultados
CVE-2025-63371HIGHMilos Paripovic OneCommander 3.102.0.0 is vulnerable to Directory Traversal. The vulnerability resides in the ZIP file processing component,EPSS 0.6%CVE-2025-15076MEDIUMTenda CH22 public path traversalEPSS 0.6%CVE-2023-32297CRITICALWordPress LWS Affiliation plugin <= 2.2.6 - Local File Inclusion vulnerabilityEPSS 0.6%CVE-2026-34790HIGHEndian Firewall /cgi-bin/backup.cgi remove ARCHIVE Directory TraversalEPSS 0.6%CVE-2025-69770CRITICALA zip slip vulnerability in the /DesignTools/SkinList.aspx endpoint of MojoPortal CMS v2.9.0.1 allows attackers to execute arbitrary commandEPSS 0.6%CVE-2026-58166HIGHOpenBMB ChatDev - Unauthenticated Path Traversal in Upload Handler Allows Arbitrary File Write and DeleteEPSS 0.6%CVE-2023-37932MEDIUMAn improper limitation of a pathname to a restricted directory ('path traversal') vulnerability [CWE-22] in FortiVoiceEntreprise version 7.0EPSS 0.6%CVE-2025-6070MEDIUMRestrict File Access <= 1.1.2 - Authenticated (Subscriber+) Arbitrary File ReadEPSS 0.6%CVE-2025-22152CRITICALImproper Path Validation Enables Path Traversal in Multiple Components in AtheosEPSS 0.6%CVE-2026-54223HIGHRemote Code Execution via arbitrary file read and write in UBB.threadsEPSS 0.6%CVE-2024-10585MEDIUMInfiniteWP Client <= 1.13.0 - Unauthenticated Limited Directory Traversal to Arbitrary .txt File ReadingEPSS 0.6%CVE-2025-13261MEDIUMlsfusion platform DownloadFileRequestHandler.java DownloadFileRequestHandler path traversalEPSS 0.6%CVE-2025-4545MEDIUMCTCMS Content Management System File Tpl.php del path traversalEPSS 0.6%CVE-2026-40521HIGHFrontAccounting < 2.4.20 Path Traversal RCE via attachment uploadEPSS 0.6%CVE-2024-54453HIGHAn issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18, and 7.11.x through 7.11.0.15. A path traversaEPSS 0.6%CVE-2025-29846HIGHA vulnerability in portenable cgi allows remote authenticated users to get the status of installed packages.EPSS 0.6%CVE-2022-47506HIGHSolarWinds Platform Directory Traversal VulnerabilityEPSS 0.6%CVE-2025-12003HIGHA path traversal vulnerability has been identified in WebDAV, which may allow unauthenticated remote attackers to impact the integrity of thEPSS 0.6%CVE-2024-24908MEDIUMDell PowerProtect DM5500 version 5.15.0.0 and prior contain an Arbitrary File Delete via Path Traversal vulnerability. A remote attacker witEPSS 0.6%CVE-2025-54347CRITICALA Directory Traversal vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows EPSS 0.6%