Weaknesses of type CWE-22

4,775 results
CVE-2018-16473A path traversal in takeapeek module versions <=0.2.2 allows an attacker to list directory and files.EPSS 1.4%CVE-2024-40524CRITICALDirectory Traversal vulnerability in xmind2testcase v.1.5 allows a remote attacker to execute arbitrary code via the webtool\application.py EPSS 1.4%CVE-2025-44137HIGHMapTiler Tileserver-php v2.0 is vulnerable to Directory Traversal. The renderTile function within tileserver.php is responsible for deliveriEPSS 1.4%CVE-2020-14366MEDIUMA vulnerability was found in keycloak, where path traversal using URL-encoded path segments in the request is possible because the resourcesEPSS 1.4%CVE-2022-0493String Locator < 2.5.0 - Admin+ Arbitrary File ReadEPSS 1.4%CVE-2024-24042HIGHDirectory Traversal vulnerability in Devan-Kerman ARRP v.0.8.1 and before allows a remote attacker to execute arbitrary code via the dumpDirEPSS 1.4%CVE-2024-7776HIGHArbitrary File Overwrite in onnx/onnxEPSS 1.4%CVE-2023-49735Apache Tiles: Unvalidated input may lead to path traversal and XXEEPSS 1.4%CVE-2022-45299CRITICALAn issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL.EPSS 1.3%CVE-2022-50792HIGHSOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Unauthenticated File Disclosure VulnerabilityEPSS 1.3%CVE-2024-36512HIGHAn improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiManager, FortiAnalyzer 7.4.0 through 7.4.EPSS 1.3%CVE-2025-6798HIGHMarvell QConvergeConsole deleteAppFile Directory Traversal Arbitrary File Deletion VulnerabilityEPSS 1.3%CVE-2020-7494A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in EcoStruxure Operator TerminEPSS 1.3%CVE-2022-4244HIGHCodehaus-plexus: directory traversalEPSS 1.3%CVE-2024-9676MEDIUMPodman: buildah: cri-o: symlink traversal vulnerability in the containers/storage library can cause denial of service (dos)EPSS 1.3%CVE-2022-23602HIGHNim's rst parser sandboxed mode allows include which can embed any local fileEPSS 1.3%CVE-2013-10062MEDIUMLinksys Routers apply.cgi Path TraversalEPSS 1.3%CVE-2022-25895HIGHDirectory TraversalEPSS 1.3%CVE-2025-7360CRITICALHT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. <= 2.2.1 - Directory Traversal to Arbitrary File MoveEPSS 1.3%CVE-2022-21192HIGHAll versions of the package serve-lite are vulnerable to Directory Traversal due to missing input sanitization or other checks and protectioEPSS 1.3%