CWE-21
4 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-21page 1 of 1
- CVE-2015-10030MEDIUMCVSS 5.5EG 5.52023-01-08
A vulnerability has been found in SUKOHI Surpass and classified as critical. This vulnerability affects unknown code of the file src/Sukohi/Surpass/Surpass.php. The manipulation of the argument dir leads to pathname traversal. Upgrading to…
- CVE-2016-15017MEDIUMCVSS 5.5EG 9.82023-01-10
A vulnerability has been found in fabarea media_upload on TYPO3 and classified as critical. This vulnerability affects the function getUploadedFileList of the file Classes/Service/UploadFileService.php. The manipulation leads to pathname t…
- CVE-2019-11626MEDIUMCVSS 5.3EG 5.32019-04-30
routers/ajaxRouter.php in doorGets 7.0 has a web site physical path leakage vulnerability, as demonstrated by an ajax/index.php?uri=1234%5c request.
- CVE-2024-7738LOWCVSS 3.3EG 3.32024-08-13
A vulnerability, which was classified as problematic, has been found in yzane vscode-markdown-pdf 1.5.0. Affected by this issue is some unknown functionality of the component Markdown File Handler. The manipulation leads to pathname traver…
Map vulnerabilities like CWE-21 to your infrastructure
EchelonGraph correlates every CVE — across CWE-21 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →