Fallos del tipo CWE-22

4854 resultados
CVE-2025-8433MEDIUMcode-projects Document Management System dell.php unlink path traversalEPSS 0.5%CVE-2025-8081MEDIUMElementor <= 3.30.2 - Authenticated (Administrator+) Arbitrary File Read via Image ImportEPSS 0.5%CVE-2024-4576MEDIUMTIBCO EBX File Inclusion VulnerabilityEPSS 0.5%CVE-2024-47351HIGHWordPress MaxSlider plugin <= 1.2.3 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2024-2552MEDIUMPAN-OS: Arbitrary File Delete Vulnerability in the Command Line Interface (CLI)EPSS 0.5%CVE-2025-61941HIGHA path traversal issue exists in WXR9300BE6P series firmware versions prior to Ver.1.10. Arbitrary file may be altered by an administrative EPSS 0.5%CVE-2025-48387HIGHtar-fs has issue where extract can write outside the specified dir with a specific tarballEPSS 0.5%CVE-2026-52811CRITICALGogs: UploadRepoFiles writes outside repo working tree via committed parent symEPSS 0.5%CVE-2026-11595MEDIUMIBM WebSphere Application Server is affected by a Path Traversal vulnerabilityEPSS 0.5%CVE-2025-25685HIGHAn issue was discovered in GL-INet Beryl AX GL-MT3000 v4.7.0. Attackers are able to download arbitrary files from the device's file system vEPSS 0.5%CVE-2026-14352HIGHAR for WooCommerce <= 8.40 - Unauthenticated Path Traversal to Arbitrary File Read via 'file' ParameterEPSS 0.5%CVE-2025-25684HIGHA lack of validation in the path parameter (/download) of GL-INet Beryl AX GL-MT3000 v4.7.0 allows attackers to download arbitrary files froEPSS 0.5%CVE-2022-34430HIGHDell Hybrid Client below 1.8 version contains a Zip Bomb Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnEPSS 0.5%CVE-2023-51366HIGHQTS, QuTS heroEPSS 0.5%CVE-2022-23970HIGHASUS RT-AX56U - Path TraversalEPSS 0.5%CVE-2025-6854MEDIUMchatchat-space Langchain-Chatchat files path traversalEPSS 0.5%CVE-2022-23971HIGHASUS RT-AX56U - Path TraversalEPSS 0.5%CVE-2025-3295MEDIUMWP Editor <= 1.2.9.1 - Authenticated (Administrator+) Directory Traversal to Arbitrary File ReadEPSS 0.5%CVE-2025-14728MEDIUMRapid7 Velociraptor Directory Traversal VulnerabilityEPSS 0.5%CVE-2024-7634MEDIUMNGINX Agent VulnerabilityEPSS 0.5%