Weaknesses of type CWE-22

4,790 results
CVE-2025-34181HIGHNetSupport Manager < 14.12.0001 Authenticated Path Traversal Arbitrary File Write RCEEPSS 0.9%CVE-2024-39406MEDIUMAdobe Commerce | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)EPSS 0.9%CVE-2014-125080MEDIUMfrontaccounting faplanet path traversalEPSS 0.9%CVE-2025-34350HIGHUnForm Server < 10.1.15 Doc Flow Unauthenticated File ReadEPSS 0.9%CVE-2025-13810MEDIUMjsnjfz WebStack-Guns KaptchaController.java renderPicture path traversalEPSS 0.9%CVE-2023-32756HIGHe-Excellence U-Office Force - Path TraversalEPSS 0.9%CVE-2024-25164HIGHiA Path Traversal vulnerability exists in iDURAR v2.0.0, that allows unauthenticated attackers to expose sensitive files via the download fuEPSS 0.9%CVE-2023-42487HIGHSoundminer – CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')EPSS 0.9%CVE-2025-32587HIGHWordPress WooCommerce Pickupp plugin <= 2.4.3 - Local File Inclusion vulnerabilityEPSS 0.9%CVE-2022-31194HIGHPath traversal vulnerabilities in DSpace JSPUI submission uploadEPSS 0.9%CVE-2020-36628MEDIUMCalsign APDE ZIP File CopyBuildTask.java handleExtract path traversalEPSS 0.9%CVE-2022-4748MEDIUMFlatPress File Delete panel.mediamanager.file.php doItemActions path traversalEPSS 0.9%CVE-2024-5456HIGHPanda Video <= 1.4.0 - Authenticated (Contributor+) Local File InclusionEPSS 0.9%CVE-2023-24379MEDIUMWordPress Landing Page Builder – Free Landing Page Templates plugin <= 3.1.9.9 - Local File Inclusion vulnerabilityEPSS 0.9%CVE-2025-1335MEDIUMCmsEasy file_admin.php deleteimg_action path traversalEPSS 0.9%CVE-2025-55988HIGHAn issue in the component /Controllers/RestController.php of DreamFactory Core v1.0.3 allows attackers to execute a directory traversal via EPSS 0.9%CVE-2025-6925MEDIUMDromara RuoYi-Vue-Plus Mail MailController.java path traversalEPSS 0.9%CVE-2024-37464MEDIUMWordPress Beaver Builder Addons by WPZOOM plugin <= 1.3.5 - Local File Inclusion vulnerabilityEPSS 0.9%CVE-2023-6026CRITICALImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in PHPMemcachedAdminEPSS 0.9%CVE-2021-39369MEDIUMIn Philips (formerly Carestream) Vue MyVue PACS through 12.2.x.x, the VideoStream function allows Path Traversal by authenticated users to aEPSS 0.9%