Falhas do tipo CWE-22
4.858 resultadosCVE-2026-28827CRITICALA parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.7.5,EPSS 0.3%CVE-2026-44298MEDIUMKimai: Arbitrary file read in invoice PDF renderer (admin)EPSS 0.3%CVE-2024-47273MEDIUMAn improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in Backup Task functionality in Synology HypEPSS 0.3%CVE-2026-48716HIGHnanobot: Path traversal via unsanitized WhatsApp document fileName enables arbitrary file writeEPSS 0.3%CVE-2025-8917MEDIUMPath Traversal Leading to Remote Code Execution in allegroai/clearmlEPSS 0.3%CVE-2023-52953MEDIUMPath traversal vulnerability in the Medialibrary module
Impact: Successful exploitation of this vulnerability will affect integrity and confEPSS 0.3%CVE-2026-9154HIGHArbitrary File Write in Rapid7 InsightConnect Sed PluginEPSS 0.3%CVE-2026-4502MEDIUMArbitrary File Write and Remote Code Execution Vulnerability in Langflow v2 APIEPSS 0.3%CVE-2026-20688CRITICALA path handling issue was addressed with improved validation. This issue is fixed in iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS SEPSS 0.3%CVE-2026-0655MEDIUMPath Traversal on TP-Link Deco BE25EPSS 0.3%CVE-2026-26228LOWVLC for Android < 3.7.0 Remote Access Path TraversalEPSS 0.3%CVE-2024-23216MEDIUMA path handling issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS VenturaEPSS 0.3%CVE-2026-44301MEDIUMHugo: Node tool execution allows file system access outside the project directoryEPSS 0.3%CVE-2026-49991HIGHRustFS Snowball Auto-Extract: Path Traversal allows cross-bucket object injectionEPSS 0.3%CVE-2023-2270HIGHLocal privilege escalationEPSS 0.3%CVE-2026-49342MEDIUMYARD static cache reads raw traversal paths before router sanitizationEPSS 0.3%CVE-2026-39245MEDIUMdecompress before 4.2.2 contains an improper path containment check that enables directory traversal and arbitrary file write. The safeMakeDEPSS 0.3%CVE-2025-14965MEDIUM1541492390c yougou-mall ResourceController.java delete path traversalEPSS 0.3%CVE-2025-61641LOWAPI list=allpages with maxsize is making really slow queriesEPSS 0.3%CVE-2026-2818HIGHZip Slip Path Traversal in Snapshot Archive Extraction (Windows-Specific)EPSS 0.3%