Fallos del tipo CWE-22

4840 resultados
CVE-2024-39036MEDIUMSeaCMS v12.9 is vulnerable to Arbitrary File Read via admin_safe.php.EPSS 0.6%CVE-2023-35881HIGHWordPress WooCommerce One Page Checkout plugin <= 2.3.0 - Local File Inclusion vulnerabilityEPSS 0.6%CVE-2023-23366HIGHMusic StationEPSS 0.6%CVE-2026-35214HIGHBudibase: Path traversal in plugin file upload enables arbitrary directory deletion and file writeEPSS 0.6%CVE-2025-59372MEDIUMA path traversal vulnerability has been identified in certain router models. A remote, authenticated attacker could exploit this vulnerabiliEPSS 0.6%CVE-2026-42882CRITICALoxyno-zeta/s3-proxy: Security Issues in Resource Path MatchingEPSS 0.6%CVE-2026-6344MEDIUMFluent Forms <= 6.2.1 - Authenticated (Administrator+) Arbitrary File Read via Path Traversal in Email AttachmentEPSS 0.6%CVE-2023-23365HIGHMusic StationEPSS 0.6%CVE-2024-51966MEDIUMDirectory traversal vulnerability in ArcGIS ServerEPSS 0.6%CVE-2024-33535HIGHAn issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The vulnerability involves unauthenticated local file inclusion (LFI) inEPSS 0.6%CVE-2024-39619CRITICALWordPress ListingPro plugin <= 2.9.4 - Unauthenticated Local File Inclusion vulnerabilityEPSS 0.6%CVE-2025-0823MEDIUMIBM MQ path traversalEPSS 0.6%CVE-2023-4990HIGHDirectory traversal vulnerability in MCL-Net versions prior to 4.6 Update Package (P01) may allow attackers to read arbitrary files.EPSS 0.6%CVE-2023-25303HIGHATLauncher <= 3.4.26.0 is vulnerable to Directory Traversal. A mrpack file can be maliciously crafted to create arbitrary files outside of tEPSS 0.6%CVE-2025-13816MEDIUMmoxi159753 Mogu Blog v2 ZIP File unzipFile FileOperation.unzip path traversalEPSS 0.6%CVE-2025-68155HIGH@vitejs/plugin-rsc has Arbitrary File Read via `/__vite_rsc_findSourceMapURL` Endpoint on DevelopmentEPSS 0.6%CVE-2026-22877LOWCopeland XWEB and XWEB Pro Path TraversalEPSS 0.6%CVE-2024-43271HIGHWordPress Widgets for WooCommerce Products on Elementor plugin <= 2.0.0 - Local File Inclusion vulnerabilityEPSS 0.6%CVE-2025-67963HIGHWordPress Movie Booking plugin <= 1.1.5 - Arbitrary File Deletion vulnerabilityEPSS 0.6%CVE-2026-22448HIGHWordPress PitchPrint plugin <= 11.1.2 - Arbitrary File Deletion vulnerabilityEPSS 0.6%