Weaknesses of type CWE-22
4,805 resultsCVE-2024-32024MEDIUMKohya_ss vulenrable to path injection in `common_gui.py` `add_pre_postfix` function (`GHSL-2024-023`)EPSS 0.7%CVE-2025-4912MEDIUMSourceCodester Student Result Management System Image File update_student.php path traversalEPSS 0.7%CVE-2026-22860HIGHRack has a Directory Traversal via Rack:DirectoryEPSS 0.7%CVE-2025-54307HIGHAn issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. The /configure/plugins/plugin/upload/zip/ and /configuEPSS 0.7%CVE-2025-70231CRITICALD-Link DIR-513 version 1.10 contains a critical-level vulnerability. When processing POST requests related to verification codes in /goform/EPSS 0.7%CVE-2023-49960HIGHIn Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attEPSS 0.7%CVE-2021-46902HIGHAn issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. PathEPSS 0.7%CVE-2025-67030HIGHDirectory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2dEPSS 0.7%CVE-2022-35908—Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent.EPSS 0.7%CVE-2023-45197CRITICALAdminer and AdminerEvo vulnerable to directory traversal and file uploadEPSS 0.7%CVE-2026-9843HIGHDatabase for Contact Form 7, WPforms, Elementor forms <= 1.5.1 - Unauthenticated Arbitrary File Deletion via CF7 File Field POST ValueEPSS 0.7%CVE-2025-49153CRITICALPath Traversal in MICROSENS NMP Web+EPSS 0.7%CVE-2024-40051HIGHIP Guard v4.81.0307.0 was discovered to contain an arbitrary file read vulnerability via the file name parameter.EPSS 0.7%CVE-2025-62630HIGHAdvantech DeviceOn/iEdge Path TraversalEPSS 0.7%CVE-2017-2627HIGHA flaw was found in openstack-tripleo-common as shipped with Red Hat Openstack Enterprise 10 and 11. The sudoers file as installed with OSP'EPSS 0.7%CVE-2024-31287MEDIUMWordPress Media Library Folders plugin <= 8.1.8 - Directory Traversal vulnerabilityEPSS 0.7%CVE-2024-25567HIGHDelta Electronics DIAEnergie Path traversalEPSS 0.7%CVE-2025-9801MEDIUMSimStudioAI sim path traversalEPSS 0.7%CVE-2023-5355HIGHAwesome Support < 6.1.5 - Submitter+ Arbitrary File DeletionEPSS 0.7%CVE-2026-45661CRITICALDokploy: Remote Code Execution through Path TraversalEPSS 0.7%