Fallos del tipo CWE-22
4862 resultadosCVE-2026-44641HIGHMicrosoft APM: plugin.json component paths escape plugin root and copy arbitrary host files during installEPSS 0.4%CVE-2025-7488MEDIUMJoeyBling SpringBoot_MyBatisPlus download path traversalEPSS 0.4%CVE-2026-52716MEDIUMWordPress WorkScout-Core plugin <= 1.7.11 - Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2026-3585HIGHThe Events Calendar <= 6.15.17 - Authenticated (Author+) Arbitrary File Read via ajax_create_importEPSS 0.4%CVE-2025-61784HIGHLLaMA Factory's Chat API has Critical SSRF and LFI VulnerabilitiesEPSS 0.4%CVE-2025-53588HIGHWordPress UPC/EAN/GTIN Code Generator Plugin <= 2.0.2 - Arbitrary File Deletion VulnerabilityEPSS 0.4%CVE-2026-52797HIGHGogs: Overwriting critical files results in a denial of serviceEPSS 0.4%CVE-2025-13681MEDIUMBFG Tools – Extension Zipper <= 1.0.7 - Authenticated (Administrator+) Path Traversal via 'first_file' ParameterEPSS 0.4%CVE-2026-31939HIGHPath Traversal (Arbitrary File Delete) in Chamilo LMSEPSS 0.4%CVE-2025-54029HIGHWordPress WooCommerce csv import export Plugin <= 2.0.6 - Arbitrary File Deletion VulnerabilityEPSS 0.4%CVE-2026-32116HIGHMagic Wormhole: "wormhole receive" allows arbitrary local file overwriteEPSS 0.4%CVE-2026-40005CRITICALApache IoTDB: Path Traversal in Pipe File Transfer ReceiverEPSS 0.3%CVE-2026-6262MEDIUMBetheme <= 28.4 - Authenticated (Contributor+) Arbitrary File Deletion via 'mfn-icon-upload'EPSS 0.3%CVE-2025-64107HIGHCursor is Vulnerable to Path Manipulation Using Backslashes on WindowsEPSS 0.3%CVE-2025-6774MEDIUMgooaclok819 sublinkX template.go AddTemp path traversalEPSS 0.3%CVE-2026-54017HIGHOpen WebUI: Path traversal / SSRF in terminal server proxy via encoded path traversalEPSS 0.3%CVE-2026-29185LOW@backstage/integration: Potential reading of SCM URLs using built in tokenEPSS 0.3%CVE-2025-10245MEDIUMDisplay Painéis TGA Galeria rename path traversalEPSS 0.3%CVE-2025-5380MEDIUMashinigit 天青一白 XueShengZhuSu 学生住宿管理系统 Image File Upload upload path traversalEPSS 0.3%CVE-2026-33171MEDIUMStatamic has a path traversal in file dictionary fieldtypeEPSS 0.3%