Weaknesses of type CWE-22

4,806 results
CVE-2025-9950MEDIUMError Log Viewer by BestWebSoft <= 1.1.6 - Authenticated (Administrator+) Arbitrary File ReadEPSS 0.7%CVE-2026-56258CRITICALCrawl4AI - Arbitrary File Write via output_path Symlink and TOCTOUEPSS 0.7%CVE-2026-40909HIGHWWBN AVideo has a Path Traversal in Locale Save Endpoint that Enables Arbitrary PHP File Write to Any Web-Accessible Directory (RCE)EPSS 0.7%CVE-2026-32771HIGHMonitoring is vulnerable to Archive Slip due to missing checks in sanitizationEPSS 0.7%CVE-2022-4878MEDIUMJATOS ZIP ZipUtil.java ZipUtil path traversalEPSS 0.7%CVE-2025-59711HIGHAn issue was discovered in Biztalk360 before 11.5. Because of mishandling of user-provided input in an upload mechanism, an authenticated atEPSS 0.7%CVE-2024-37902CRITICALPath thraversal in DeepJavaLibraryEPSS 0.7%CVE-2025-32671HIGHWordPress Print Science Designer plugin <= 1.3.155 - Arbitrary File Download vulnerabilityEPSS 0.7%CVE-2026-24135HIGHGogs vulnerable to arbitrary file deletion via path traversal in wiki page updateEPSS 0.7%CVE-2025-22130MEDIUMSoft Serve allows path traversal attacksEPSS 0.7%CVE-2025-14675HIGHMeta Box <= 5.11.1 - Authenticated (Contributor+) Arbitrary File DeletionEPSS 0.7%CVE-2023-23608NONEspotipy Path traversal vulnerability that may lead to type confusion in URI handling codeEPSS 0.7%CVE-2024-32023MEDIUMKohya_ss vulnerable to path injection in `common_gui.py` `find_and_replace` function (`GHSL-2024-024`)EPSS 0.7%CVE-2021-47977HIGHWordPress Anti-Malware Security Bruteforce Firewall <= 4.20.72 Directory TraversalEPSS 0.7%CVE-2025-5160MEDIUMH3C SecCenter SMP-E1114P02 download path traversalEPSS 0.7%CVE-2025-66687HIGHDoom Launcher 3.8.1.0 is vulnerable to Directory Traversal due to missing file path validation during the extraction of game filesEPSS 0.7%CVE-2026-3839HIGHUnraid Authentication Request Path Traversal Authentication Bypass VulnerabilityEPSS 0.7%CVE-2025-2744MEDIUMzhijiantianya ruoyi-vue-pro Material Upload Interface upload-news-image path traversalEPSS 0.7%CVE-2025-5158MEDIUMH3C SecCenter SMP-E1114P02 downloadSoftware path traversalEPSS 0.7%CVE-2023-39506HIGHPDF-XChange Editor createDataObject Directory Traversal Remote Code Execution VulnerabilityEPSS 0.7%