Fallos del tipo CWE-22
4862 resultadosCVE-2025-9650MEDIUMyeqifu carRental AppFileUtils.java removeFileByPath path traversalEPSS 0.4%CVE-2023-0592MEDIUMPath traversal in jeffersonEPSS 0.4%CVE-2025-29843MEDIUMA vulnerability in FileStation thumb cgi allows remote authenticated users to read/write image files.EPSS 0.4%CVE-2026-55667HIGHFile Browser: Out-of-scope file deletion by a Create-only scoped user via symlink-following RemoveAll in upload failure-cleanupEPSS 0.4%CVE-2025-13725MEDIUMGutenberg Thim Blocks <= 1.0.1 - Authenticated (Contributor+) Arbitrary File Read via 'iconSVG' ParameterEPSS 0.4%CVE-2020-10691MEDIUMAn archive traversal flaw was found in all ansible-engine versions 2.9.x prior to 2.9.7, when running ansible-galaxy collection install. WheEPSS 0.4%CVE-2026-8754MEDIUMAstrBotDevs AstrBot File Upload chat.py post_file path traversalEPSS 0.4%CVE-2024-30143MEDIUMA path traversal vulnerability in HCL AppScan Traffic RecorderEPSS 0.4%CVE-2026-4233MEDIUMThingsGateway download path traversalEPSS 0.4%CVE-2025-12203MEDIUMgivanz Vvveb Code Editor functions.php sanitizeFileName path traversalEPSS 0.4%CVE-2025-22601LOWClient Side Path Traversal using activate account route in DiscourseEPSS 0.4%CVE-2026-4307MEDIUMfrdel/agent0ai agent-zero files.py get_abs_path path traversalEPSS 0.4%CVE-2025-63918MEDIUMPDFPatcher executable does not validate user-supplied file paths, allowing directory traversal attacks allowing attackers to upload arbitrarEPSS 0.4%CVE-2026-4917MEDIUMIBM Guardium Data Protection is affected by multiple vulnerabilitiesEPSS 0.4%CVE-2026-27704MEDIUMDart SDK and Flutter SDK have Zip slip in Dart Pub package extractionEPSS 0.4%CVE-2026-58499HIGHPath traversal in EverOS /api/v1/memory/add via unvalidated sender_idEPSS 0.4%CVE-2026-21878HIGHBACnet Stack Improperly Limits Pathnames to a Restricted DirectoryEPSS 0.4%CVE-2026-40518HIGHByteDance DeerFlow Path Traversal and Arbitrary File Write via Bootstrap ModeEPSS 0.4%CVE-2026-49738LOWTYPO3 CMS - Broken Access Control in File Abstraction LayerEPSS 0.4%CVE-2025-43889MEDIUMDell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4, LTS2024 release VerEPSS 0.4%