Falhas do tipo CWE-22

4.768 resultados
CVE-2024-23652CRITICALBuildKit possible host system access from mount stub cleanerEPSS 2.0%CVE-2018-3730mcstatic node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to reaEPSS 2.0%CVE-2023-52332HIGHAllegra serveMathJaxLibraries Directory Traversal Information Disclosure VulnerabilityEPSS 2.0%CVE-2023-29159HIGHDirectory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote unauthenticated attacker to vieEPSS 2.0%CVE-2022-40443MEDIUMAn absolute path traversal vulnerability in ZZCMS 2022 allows attackers to obtain sensitive information via a crafted GET request sent to /oEPSS 2.0%CVE-2020-15229HIGHPath traversal and files overwrite with unsquashfsEPSS 2.0%CVE-2018-3729localhost-now node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to reEPSS 2.0%CVE-2022-30117Concrete 8.5.7 and below as well as Concrete 9.0 through 9.0.2 allow traversal in /index.php/ccm/system/file/upload which could result in anEPSS 2.0%CVE-2023-28413CRITICALDirectory traversal vulnerability in Snow Monkey Forms versions v5.0.6 and earlier allows a remote unauthenticated attacker to obtain sensitEPSS 2.0%CVE-2014-125125HIGHA10 Networks AX Loadbalancer Path TraversalEPSS 2.0%CVE-2024-7603HIGHLogsign Unified SecOps Platform Directory Traversal Arbitrary Directory Deletion VulnerabilityEPSS 2.0%CVE-2024-7600HIGHLogsign Unified SecOps Platform Directory Traversal Arbitrary File Deletion VulnerabilityEPSS 2.0%CVE-2017-16037`gomeplus-h5-proxy` is vulnerable to a directory traversal issue, allowing attackers to access any file in the system by placing '../' in thEPSS 2.0%CVE-2017-16175ewgaddis.lab6 is a file server. ewgaddis.lab6 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by pEPSS 2.0%CVE-2017-16143commentapp.stetsonwood is an http server. commentapp.stetsonwood is vulnerable to a directory traversal issue, giving an attacker access to EPSS 2.0%CVE-2017-16164desafio is a simple web server. desafio is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placingEPSS 2.0%CVE-2017-16208dmmcquay.lab6 is a REST server. dmmcquay.lab6 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by pEPSS 2.0%CVE-2017-16184scott-blanch-weather-app is a sample Node.js app using Express 4. scott-blanch-weather-app is vulnerable to a directory traversal issue, givEPSS 2.0%CVE-2017-16174whispercast is a file server. whispercast is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placiEPSS 2.0%CVE-2017-16089serverlyr is a simple http server. serverlyr is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by plEPSS 2.0%