Falhas do tipo CWE-22
4.722 resultadosCVE-2022-29799MEDIUMA vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdminisEPSS 11.7%CVE-2022-3184CRITICALDataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where the device’s existing firmware allows unauthenticated uEPSS 11.6%CVE-2023-26256HIGHAn unauthenticated path traversal vulnerability affects the "STAGIL Navigation for Jira - Menu & Themes" plugin before 2.0.52 for Jira. By mEPSS 11.6%CVE-2020-15639CRITICALThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. AuthentEPSS 11.5%CVE-2017-12263—A vulnerability in the web interface of Cisco License Manager software could allow an unauthenticated, remote attacker to download and view EPSS 11.5%CVE-2024-38878MEDIUMA vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), OmniviEPSS 11.5%CVE-2024-40422CRITICALThe snapshot_path parameter in the /api/get-browser-snapshot endpoint in stitionai devika v1 is susceptible to a path traversal attack. An aEPSS 11.4%CVE-2026-27483HIGHMindsDB has Path Traversal in /api/files Leading to Remote Code ExecutionEPSS 11.1%CVE-2022-1392—Videos sync PDF <= 1.7.4 - Unauthenticated LFIEPSS 11.1%CVE-2025-14704MEDIUMShiguangwu sgwbox N3 API eshell path traversalEPSS 11.0%CVE-2018-1002201—zt-zip before 1.13 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip aEPSS 10.3%CVE-2025-5964HIGHPath traversal in M-Files APIEPSS 10.3%CVE-2024-6127CRITICALBC Security Empire Path Traversal RCEEPSS 10.3%CVE-2022-47501HIGHApache OFBiz: Arbitrary file reading vulnerabilityEPSS 10.2%CVE-2022-47875HIGHA Directory Traversal vulnerability in /be/erpc.php in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to execute arbitrary codeEPSS 10.2%CVE-2025-2636HIGHInstaWP Connect <= 0.1.0.85 - Unauthenticated Local PHP File InclusionEPSS 10.1%CVE-2020-17387HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. AlthougEPSS 10.1%CVE-2020-17389HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. AlthougEPSS 10.1%CVE-2019-1717HIGHCisco Video Surveillance Manager Web-Based Management Interface Information Disclosure VulnerabilityEPSS 10.1%CVE-2018-1002206—SharpCompress before 0.21.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) iEPSS 10.1%