Falhas do tipo CWE-22

4.804 resultados
CVE-2024-25659HIGHIn Infinera TNMS (Transcend Network Management System) 19.10.3, an insecure default configuration of the internal SFTP server on Linux serveEPSS 0.7%CVE-2025-26615CRITICALPath Traversal endpoint 'examples.php' parameter 'src' in WeGIAEPSS 0.7%CVE-2022-43748MEDIUMImproper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in file operation management in Synology PrestoEPSS 0.7%CVE-2022-50992HIGHWeaver E-cology 9.5 Unauthenticated Arbitrary File Read via XmlRpcServletEPSS 0.7%CVE-2025-34320CRITICALBASIS BBj < 25.00 Unauthenticated Arbitrary File Read RCEEPSS 0.7%CVE-2025-2917MEDIUMChestnutCMS read readFile path traversalEPSS 0.7%CVE-2022-23530MEDIUMGuardDog vulnerable to arbitrary file write when scanning a specially-crafted remote PyPI packageEPSS 0.7%CVE-2026-28429HIGHTalishar: Critical Path Traversal in gameName ParameterEPSS 0.7%CVE-2021-22151LOWKibana path traversal issueEPSS 0.7%CVE-2026-3719MEDIUMTsinghua Unigroup Electronic Archives System downLoad path traversalEPSS 0.7%CVE-2023-40266CRITICALAn issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows path traversal.EPSS 0.7%CVE-2025-64075CRITICALA path traversal vulnerability in the check_token function of Shenzhen Zhibotong Electronics ZBT WE2001 23.09.27 allows remote attackers to EPSS 0.7%CVE-2022-44532MEDIUMAn authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise command line interface. Successful exploitation of EPSS 0.7%CVE-2025-30841CRITICALWordPress Countdown & Clock plugin <=2.8.8 - Remote Code Execution (RCE) vulnerabilityEPSS 0.7%CVE-2025-3055HIGHWP User Frontend Pro <= 4.1.3 - Authenticated (Subscriber+) Arbitrary File DeletionEPSS 0.7%CVE-2023-53979HIGHMyBB 1.8.32 Authenticated Remote Code Execution via Chained VulnerabilitiesEPSS 0.7%CVE-2026-25872MEDIUMJUNG Smart Panel 5.1 KNX Unauthenticated Path TraversalEPSS 0.7%CVE-2022-43518MEDIUMAn authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise web interface. Successful exploitation of this vulnEPSS 0.7%CVE-2025-45239MEDIUMAn issue in the restores method (DataBackup.php) of foxcms v2.0.6 allows attackers to execute a directory traversal.EPSS 0.7%CVE-2024-48931HIGHZimaOS Arbitrary File Read via Parameter ManipulationEPSS 0.7%