Falhas do tipo CWE-22
4.840 resultadosCVE-2025-51481MEDIUMLocal File Inclusion in dagster._grpc.impl.get_notebook_data in Dagster 1.10.14 allows attackers with access to the gRPC server to read arbiEPSS 0.5%CVE-2024-7609CRITICALDirectory Traversal in Vidco Software's VOC TESTEREPSS 0.5%CVE-2023-24804MEDIUMownCloud Android app vulnerable to Path TraversalEPSS 0.5%CVE-2025-6772MEDIUMeosphoros-ai db-gpt import import_flow path traversalEPSS 0.5%CVE-2024-50626HIGHAn issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal vulnerability exists in WebFS. This allows an attacker EPSS 0.5%CVE-2026-44542CRITICALFileBrowser Quantum: Unauthenticated Path Traversal in Public Share Delete Allows Arbitrary File DeletionEPSS 0.5%CVE-2024-39918MEDIUMPath Traveral in @jmondi/url-to-pngEPSS 0.5%CVE-2025-70950HIGHAn issue in gohttp commit 34ea51 allows attackers to execute a directory traversal via supplying a crafted request.EPSS 0.5%CVE-2025-27101HIGHBroken Access Control in Opal filesystem's copy functionality exposes all user dataEPSS 0.5%CVE-2024-33568HIGHWordPress Element Pack Pro plugin < 7.19.3 - Arbitrary File Read and Phar Deserialization vulnerabilityEPSS 0.5%CVE-2024-44013HIGHWordPress VR Calendar plugin <= 2.4.0 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2019-3828MEDIUMAnsible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outEPSS 0.5%CVE-2026-23850HIGHSiYuan vulnerable to arbitrary file readEPSS 0.5%CVE-2026-13369HIGHNinja Forms - File Uploads <= 3.3.29 - Unauthenticated Arbitrary File Read via File Upload Field 'files[].data.file_path' ParameterEPSS 0.5%CVE-2024-39621HIGHWordPress ListingPro plugin <= 2.9.4 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2025-9435MEDIUMPath TraversalEPSS 0.5%CVE-2026-10732MEDIUMAll versions of the package decompress are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) when extracting a ZIP archivEPSS 0.5%CVE-2025-59380MEDIUMQTS, QuTS heroEPSS 0.5%CVE-2026-42608HIGHGrav: Unauthenticated Path Traversal & Arbitrary File Write in FormFlash component.EPSS 0.5%CVE-2026-30914MEDIUMSFTPGo has a Path Traversal and Permission Bypass via Path Normalization DiscrepancyEPSS 0.5%