Falhas do tipo CWE-22

4.856 resultados
CVE-2026-41383MEDIUMOpenClaw < 2026.4.2 - Arbitrary Remote Directory Deletion via Mis-scoped Mirror Mode PathsEPSS 0.4%CVE-2026-32522HIGHWordPress WooCommerce Support Ticket System plugin < 18.5 - Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2025-68907HIGHWordPress Hostme v2 theme <= 7.0 - Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2026-39844MEDIUMNiceGUI has a Path Traversal in NiceGUI Upload Filename on Windows via Backslash Bypass of PurePosixPath SanitizationEPSS 0.4%CVE-2025-41396MEDIUMA path traversal issue exists in file uploading feature of multiple versions of PowerCMS. Arbitrary files may be overwritten by a product usEPSS 0.4%CVE-2025-69379HIGHWordPress Upload Files Anywhere plugin <= 2.8 - Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2025-65952HIGHConsole is vulnerable to path traversal regarding custom assetsEPSS 0.4%CVE-2024-55659HIGHSiYuan has an arbitrary file write in the host via /api/asset/uploadEPSS 0.4%CVE-2025-46559MEDIUMMisskey Directory Traversal Vulnerability in AiScript via `Mk:api`EPSS 0.4%CVE-2026-24137MEDIUMsigstore legacy TUF client allows for arbitrary file writes with target cache path traversalEPSS 0.4%CVE-2025-13891MEDIUMImage Gallery – Photo Grid & Video Gallery (Modula) <= 2.13.3 - Missing Authorization to Arbitrary Directory ListingEPSS 0.4%CVE-2025-64074MEDIUMA path-traversal vulnerability in the logout functionality of Shenzhen Zhibotong Electronics ZBT WE2001 23.09.27 allows remote attackers to EPSS 0.4%CVE-2025-7039LOWGlib: buffer under-read on glib through glib/gfileutils.c via get_tmp_file()EPSS 0.4%CVE-2026-24953MEDIUMWordPress Simple File List plugin <= 6.1.15 - Arbitrary File Download vulnerabilityEPSS 0.4%CVE-2022-28541MEDIUMUncontrolled search path element vulnerability in Samsung Update prior to version 3.0.77.0 allows attackers to execute arbitrary code as SamEPSS 0.4%CVE-2025-14413HIGHSoda PDF Desktop CBZ File Parsing Directory Traversal Remote Code Execution VulnerabilityEPSS 0.4%CVE-2026-28705MEDIUMGitea repository dumps write release assets using unsafe path namesEPSS 0.4%CVE-2026-2863MEDIUMfeng_ha_ha/megagao ssm-erp/production_ssm FileServiceImpl.java deleteFile path traversalEPSS 0.4%CVE-2026-43888HIGHOutline: Zip Extraction Path Escape via PATH_MAX Truncation in Collection ImportEPSS 0.4%CVE-2024-3318MEDIUMSailPoint Identity Security Cloud Connector File Path Traversal VulnerabilityEPSS 0.4%