Falhas do tipo CWE-22
4.747 resultadosCVE-2022-2969HIGHICSA-22-307-03 Delta Industrial Automation DIALink Path traversalEPSS 2.3%CVE-2022-38088MEDIUMA directory traversal vulnerability exists in the httpd downfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A speciallEPSS 2.3%CVE-2023-51449MEDIUMMake the `/file` secure against file traversal attacksEPSS 2.3%CVE-2020-8222—A path traversal vulnerability exists in Pulse Connect Secure <9.1R8 that allowed an authenticated attacker via the administrator web interfEPSS 2.3%CVE-2020-8221—A path traversal vulnerability exists in Pulse Connect Secure <9.1R8 which allows an authenticated attacker to read arbitrary files via the EPSS 2.3%CVE-2024-53537CRITICALAn issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File Actions of File Manager.EPSS 2.3%CVE-2026-34909CRITICALA malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the uEPSS 2.3%KEVCVE-2026-27825CRITICALMCP Atlassian has an arbitrary file write leading to arbitrary code execution via unconstrained download_path in confluence_download_attachmentEPSS 2.3%CVE-2022-20718MEDIUMCisco IOx Application Hosting Environment VulnerabilitiesEPSS 2.3%CVE-2022-1992CRITICALPath Traversal in gogs/gogsEPSS 2.3%CVE-2019-9886CRITICALeClass platform allows user to download arbitrary files without authenticationEPSS 2.2%CVE-2022-44900CRITICALA directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackeEPSS 2.2%CVE-2022-0779—User Meta < 2.4.4 - Subscriber+ Local File Enumeration via Path TraversalEPSS 2.2%CVE-2024-12087MEDIUMRsync: path traversal vulnerability in rsyncEPSS 2.2%CVE-2021-34436—In Eclipse Theia 0.1.1 to 0.2.0, it is possible to exploit the default build to obtain remote code execution (and XXE) via the theia-xml-extEPSS 2.2%CVE-2018-3733—crud-file-server node module before 0.9.0 suffers from a Path Traversal vulnerability due to incorrect validation of url, which allows a malEPSS 2.2%CVE-2019-5416—A path traversal vulnerability in localhost-now npm package version 1.0.2 allows the attackers to read content of arbitrary files on the remEPSS 2.2%CVE-2024-21400CRITICALMicrosoft Azure Kubernetes Service Confidential Container Elevation of Privilege VulnerabilityEPSS 2.2%CVE-2023-27534HIGHA path traversal vulnerability exists in curl <8.0.0 SFTP implementation causes the tilde (~) character to be wrongly replaced when used as EPSS 2.2%CVE-2021-33353CRITICALDirectory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arEPSS 2.2%