Falhas do tipo CWE-22

4.725 resultados

CVE-2018-1162—This vulnerability allows remote attackers to create a denial-of-service condition on vulnerable installations of Quest NetVault Backup 11.2EPSS 5.0%CVE-2021-24644—Images to WebP < 1.9 - Authenticated Local File InclusionEPSS 5.0%CVE-2024-34832CRITICALDirectory Traversal vulnerability in CubeCart v.6.5.5 and before allows an attacker to execute arbitrary code via a crafted file uploaded toEPSS 5.0%CVE-2024-7340HIGHW&B Weave server remote arbitrary file leak and privilege escalationEPSS 5.0%CVE-2025-34452HIGHStreama Subtitle Download Path Traversal and SSRF Leading to Arbitrary File WriteEPSS 5.0%CVE-2021-24453—Include Me <= 1.2.1 - Authenticated Remote Code Execution (RCE) via LFI log poisoningEPSS 5.0%CVE-2017-16610—This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager. AuthenticatiEPSS 4.9%CVE-2020-6109HIGHAn exploitable path traversal vulnerability exists in the Zoom client, version 4.6.10 processes messages including animated GIFs. A speciallEPSS 4.9%CVE-2019-13551—Advantech WISE-PaaS/RMM, Versions 3.3.29 and prior. Path traversal vulnerabilities are caused by a lack of proper validation of a user-supplEPSS 4.9%CVE-2020-14507—Advantech iView, versions 5.6 and prior, is vulnerable to multiple path traversal vulnerabilities that could allow an attacker to create/dowEPSS 4.9%CVE-2018-14806—Advantech WebAccess 8.3.1 and earlier has a path traversal vulnerability which may allow an attacker to execute arbitrary code.EPSS 4.8%CVE-2023-29887HIGHA Local File inclusion vulnerability in test.php in spreadsheet-reader 0.5.11 allows remote attackers to include arbitrary files via the FilEPSS 4.7%CVE-2019-16765HIGHIf an attacker can get a user to open a specially prepared directory tree as a workspace in Visual Studio Code with the CodeQL extension actEPSS 4.7%CVE-2020-1631HIGHOut of Cycle Security Advisory: Junos OS: Security vulnerability in J-Web and web based (HTTP/HTTPS) servicesEPSS 4.7%KEV CVE-2018-0420MEDIUMCisco Wireless LAN Controller Software Directory Traversal VulnerabilityEPSS 4.6%CVE-2023-50916HIGHKyocera Device Manager before 3.1.1213.0 allows NTLM credential exposure during UNC path authentication via a crafted change from a local paEPSS 4.6%CVE-2021-40661HIGHA remote, unauthenticated, directory traversal vulnerability was identified within the web interface used by IND780 Advanced Weighing TerminEPSS 4.6%CVE-2024-30851MEDIUMDirectory Traversal vulnerability in codesiddhant Jasmin Ransomware v.1.0.1 allows an attacker to obtain sensitive information via the downlEPSS 4.6%CVE-2024-12088MEDIUMRsync: --safe-links option bypass leads to path traversalEPSS 4.6%CVE-2019-6754HIGHThis vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.3.10826. User interactionEPSS 4.5%

← anteriorpágina 22 / 237próxima →