Fallos del tipo CWE-22

4729 resultados

CVE-2024-45256CRITICALAn arbitrary file write issue in the exfiltration endpoint in BYOB (Build Your Own Botnet) 2.0 allows attackers to overwrite SQLite databaseEPSS 5.6%CVE-2024-11238MEDIUMLandray EKP sysUiComponent.do delPreviewFile path traversalEPSS 5.6%CVE-2022-38120MEDIUMPOWERCOM CO., LTD. UPSMON PRO - Path TraversalEPSS 5.6%CVE-2023-31059HIGHRepetier Server through 1.4.10 allows ..%5c directory traversal for reading files that contain credentials, as demonstrated by connectionLosEPSS 5.6%CVE-2025-67004MEDIUM** Disputed ** An Information Disclosure vulnerability in CouchCMS 2.4 allow an Admin user to read arbitrary files via traversing directorieEPSS 5.6%CVE-2022-31062MEDIUMUnauthenticated Local File InclusionEPSS 5.5%CVE-2017-10940—This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Joyent Smart Data Center prior to agentsEPSS 5.4%CVE-2018-0464—Cisco Data Center Network Manager Path Traversal VulnerabilityEPSS 5.4%CVE-2025-31131HIGHPath Traversal allowing arbitrary read of files in YeswikiEPSS 5.4%CVE-2021-21090HIGHAdobe InCopy DOCX file parsing directory traversal vulnerability could lead to remote code executionEPSS 5.4%CVE-2021-25082—Popup Builder < 4.0.7 - LFI to RCEEPSS 5.4%CVE-2021-21514MEDIUMDell EMC OpenManage Server Administrator (OMSA) versions 9.5 and prior contain a path traversal vulnerability. A remote user with admin privEPSS 5.4%CVE-2018-11455—A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions < 6EPSS 5.3%CVE-2020-8159—There is a vulnerability in actionpack_page-caching gem < v1.2.1 that allows an attacker to write arbitrary files to a web server, potentialEPSS 5.3%CVE-2013-3993MEDIUMIBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated users to bypass intended file and directory restrictions, or access unEPSS 5.2%KEV CVE-2020-12003—FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ContEPSS 5.2%CVE-2017-3851—A Directory Traversal vulnerability in the web framework code of the Cisco application-hosting framework (CAF) component of the Cisco IOx apEPSS 5.2%CVE-2019-10220HIGHLinux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.EPSS 5.1%CVE-2022-41840HIGHWordPress Welcart eCommerce plugin <= 2.7.7 - Unauth. Directory Traversal vulnerabilityEPSS 5.1%CVE-2020-8131—Arbitrary filesystem write vulnerability in Yarn before 1.22.0 allows attackers to write to any path on the filesystem and potentially lead EPSS 5.0%

← anteriorpágina 21 / 237siguiente →