Weaknesses of type CWE-35
170 resultsCVE-2025-39475HIGHWordPress Arlo theme <= 6.0.3 - Local File Inclusion VulnerabilityEPSS 0.4%CVE-2024-56049HIGHWordPress WPLMS plugin < 1.9.9.5.2 - Subscriber+ Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2024-40505CRITICALDirectory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi compoEPSS 0.4%CVE-2026-25397HIGHWordPress File Uploader for WooCommerce plugin <= 1.0.4 - Path Traversal vulnerabilityEPSS 0.4%CVE-2025-27445MEDIUMExtension - rsjoomla.com - A path traversal vulnerability RSFirewall component 2.9.7 - 3.1.5 for JoomlaEPSS 0.4%CVE-2026-52707HIGHWordPress Kastell theme <= 2.0 - Local File Inclusion vulnerabilityEPSS 0.4%CVE-2026-0205MEDIUMA post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.EPSS 0.4%CVE-2024-52885MEDIUMPath TraversalEPSS 0.4%CVE-2025-58972HIGHWordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.10.4 - Path Traversal vulnerabilityEPSS 0.4%CVE-2025-47649HIGHWordPress Open Close WooCommerce Store plugin <= 4.9.9 - Local File Inclusion vulnerabilityEPSS 0.4%CVE-2025-64253MEDIUMWordPress Health Check & Troubleshooting plugin <= 1.7.1 - Path Traversal vulnerabilityEPSS 0.4%CVE-2024-54362HIGHWordPress GetShop ecommerce plugin <= 1.3 - Path Traversal vulnerabilityEPSS 0.4%CVE-2025-49296HIGHWordPress GrandPrix theme <= 1.6 - Local File Inclusion VulnerabilityEPSS 0.4%CVE-2025-49295HIGHWordPress MediClinic theme <= 2.1 - Local File Inclusion VulnerabilityEPSS 0.4%CVE-2025-49297HIGHWordPress Grill and Chow theme <= 1.6 - Local File Inclusion VulnerabilityEPSS 0.4%CVE-2024-56214HIGHWordPress UserPro plugin <= 5.1.9 - Local File Inclusion vulnerabilityEPSS 0.4%CVE-2025-52811HIGHWordPress Davenport - Versatile Blog and Magazine WordPress Theme <= 1.3 - Local File Inclusion VulnerabilityEPSS 0.4%CVE-2025-52810HIGHWordPress Katerio - Magazine theme <= 1.5.1 - Local File Inclusion VulnerabilityEPSS 0.4%CVE-2025-24908MEDIUMHitachi Vantara Pentaho Data Integration & Analytics – Path TraversalEPSS 0.4%CVE-2025-5598CRITICALWF Steuerungstechnik GmbH - airleader MASTER - Path TraversalEPSS 0.4%