Fallos del tipo CWE-22

4862 resultados
CVE-2026-45225HIGHHeym < 0.0.21 Path Traversal File Upload via upload_file()EPSS 0.4%CVE-2026-39468MEDIUMWordPress Meta Box – WordPress Custom Fields Framework plugin <= 5.11.1 - Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2019-0074MEDIUMJunos OS: NFX150 Series, QFX10K Series, EX9200 Series, MX Series, PTX Series: Path traversal vulnerability in NFX150 and NG-RE leads to information disclosure.EPSS 0.4%CVE-2026-28447HIGHOpenClaw 2026.1.29-beta.1 < 2026.2.1 - Path Traversal in Plugin Installation via Package NameEPSS 0.4%CVE-2025-43889MEDIUMDell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4, LTS2024 release VerEPSS 0.4%CVE-2026-3029HIGHCVE-2026-3029EPSS 0.4%CVE-2026-44705HIGHtmp: Path Traversal via unsanitized prefix/postfix enables directory escapeEPSS 0.4%CVE-2024-39178MEDIUMMyPower vc8100 V100R001C00B030 was discovered to contain an arbitrary file read vulnerability via the component /tcpdump/tcpdump.php?menu_uuEPSS 0.4%CVE-2026-25328MEDIUMWordPress Product File Upload for WooCommerce plugin <= 2.2.4 - Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2026-32147MEDIUMSFTP chroot bypass via path traversal in SSH_FXP_FSETSTATEPSS 0.4%CVE-2023-0593MEDIUMPath traversal in yaffshivEPSS 0.4%CVE-2023-43802HIGHPath traversal in Arduino Create AgentEPSS 0.4%CVE-2024-56179HIGHIn MindManager Windows versions prior to 24.1.150, attackers could potentially write to unexpected directories in victims' machines via direEPSS 0.4%CVE-2025-13875MEDIUMYohann0617 oci-helper OCI Configuration Upload OciServiceImpl.java addCfg path traversalEPSS 0.4%CVE-2025-64485MEDIUMCVAT: Mounted share file overwrite via crafted requestEPSS 0.4%CVE-2025-68862HIGHWordPress Woo File Dropzone plugin <= 1.1.7 - Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2026-28078MEDIUMWordPress uListing plugin <= 2.2.0 - Arbitrary File Download vulnerabilityEPSS 0.4%CVE-2025-64346MEDIUMarchives: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')EPSS 0.4%CVE-2026-42574HIGHapko dirFS has a symlink-following path traversal that allows multiple entry points to escape the build rootEPSS 0.4%CVE-2025-7488MEDIUMJoeyBling SpringBoot_MyBatisPlus download path traversalEPSS 0.4%