Weaknesses of type CWE-35
170 resultsCVE-2024-49258MEDIUMWordPress Limb Gallery plugin <= 1.5.7 - Arbitrary File Download vulnerabilityEPSS 0.5%CVE-2025-26876MEDIUMWordPress Search with Typesense Plugin <= 2.0.8 - Path Traversal vulnerabilityEPSS 0.5%CVE-2024-45248HIGHMulti-DNC – CWE-35: Path Traversal: '.../...//'EPSS 0.5%CVE-2024-51582HIGHWordPress WP Hotel Booking plugin <= 2.2.9 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2025-39467HIGHWordPress Wanderland theme <= 1.7.1 - Local File Inclusion VulnerabilityEPSS 0.5%CVE-2024-49249HIGHWordPress SMSA Shipping plugin <= 2.3 - Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2024-34191MEDIUMhtmly v2.9.6 was discovered to contain an arbitrary file deletion vulnerability via the delete_post() function at admin.php. This vulnerabilEPSS 0.5%CVE-2024-47324HIGHWordPress WP Timeline plugin <= 3.6.7 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2025-30515CRITICALCyberData 011209 SIP Emergency Intercom Path TraversalEPSS 0.5%CVE-2024-47171MEDIUMAgnai vulnerable to Relative Path Traversal in Image UploadEPSS 0.5%CVE-2026-42930HIGHAppliance mode iControl REST vulnerabilityEPSS 0.5%CVE-2025-30834HIGHWordPress Bit Assist plugin <= 1.5.4 - Path Traversal vulnerabilityEPSS 0.5%CVE-2025-27274MEDIUMWordPress GPX Viewer plugin <= 2.2.11 - Path Traversal vulnerabilityEPSS 0.5%CVE-2025-22205HIGHExtension - admiror-design-studio.com - Path traversal in the Admiror Gallery 4.x component for JoomlaEPSS 0.5%CVE-2026-26124MEDIUMMicrosoft ACI Confidential Containers Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2024-56055HIGHWordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary Directory Deletion vulnerabilityEPSS 0.5%CVE-2024-47170MEDIUMAgnai File Disclosure Vulnerability: JSON via Path TraversalEPSS 0.5%CVE-2026-40128CRITICALDirectory Traversal vulnerability in SAP NetWeaver Application Server Java (Web Container)EPSS 0.5%CVE-2025-49451HIGHWordPress Aeroscroll Gallery – Infinite Scroll Image Gallery & Post Grid with Photo Gallery plugin <= 1.0.13 - Directory Traversal VulnerabilityEPSS 0.4%CVE-2025-25122HIGHWordPress WizShop Plugin <= 3.0.2 - Local File Inclusion vulnerabilityEPSS 0.4%