Fallos del tipo CWE-22
4828 resultadosCVE-2024-37454MEDIUMWordPress AWSM Team – Team Showcase Plugin plugin <= 1.3.1 - Local File Inclusion vulnerabilityEPSS 0.6%CVE-2026-35593MEDIUMTrilium Notes has Local File Inclusion via upload modified file API endpointEPSS 0.6%CVE-2024-49287HIGHWordPress PDF-Rechnungsverwaltung plugin <= 0.0.1 - Local File Inclusion vulnerabilityEPSS 0.6%CVE-2026-48055CRITICALStreambert: Arbitrary File Write (Zip Slip) via Subtitle ExtractionEPSS 0.6%CVE-2025-10307MEDIUMBackuply – Backup, Restore, Migrate and Clone <= 1.4.8 - Authenticated (Admin+) Arbitrary File DeletionEPSS 0.6%CVE-2026-34745CRITICALUnauthenticated Path Traversal Arbitrary File Write in /api/uploadChunked/publicEPSS 0.6%CVE-2025-4377HIGHPath traversal vulnerability in Sparx Pro Cloud Server WebEA webconfig in logview.phpEPSS 0.6%CVE-2024-11343HIGHTelerik Document Processing Path TraversalEPSS 0.6%CVE-2026-40062HIGHA path Traversal vulnerability exists in Ziostation2 v2.9.8.7 and earlier. A remote unauthenticated attacker may get sensitive information oEPSS 0.6%CVE-2026-22905HIGHAuthentication Bypass via URI TraversalEPSS 0.6%CVE-2026-44336CRITICALPraisonAI MCP `tools/call` path-traversal and RCE via Python `.pth` injectionEPSS 0.6%CVE-2025-24891CRITICALDumb Drop has an arbitrary file overwrite and path traversal for root shellEPSS 0.6%CVE-2020-37015HIGHRuijie Networks Switch eWeb S29_RGOS 11.4 - Directory TraversalEPSS 0.6%CVE-2026-25891HIGHFiber has an Arbitrary File Read in Static Middleware on WindowsEPSS 0.6%CVE-2025-3897MEDIUMEUCookieLaw <= 2.7.2 - Unauthenticated Arbitrary File ReadEPSS 0.6%CVE-2024-25136HIGHAutomationDirect C-MORE EA9 HMI Path TraversalEPSS 0.6%CVE-2022-40742MEDIUMSOFTNEXT TECHNOLOGIES CORP. Mail SQR Expert - Local File InclusionEPSS 0.6%CVE-2024-37266MEDIUMWordPress Tutor LMS plugin <= 2.7.1 - Path Traversal vulnerabilityEPSS 0.6%CVE-2024-3107MEDIUMSpectra – WordPress Gutenberg Blocks <= 2.12.6 - Authenticated (Contributor+) Path TraversalEPSS 0.6%CVE-2026-32232HIGHZeptoClaw: Path boundary checks bypass via symlink, TOCTOU, and hardlinkEPSS 0.6%