CWE-22— Path Traversal
8,429 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 108 of 169
- CVE-2023-43216CRITICALCVSS 9.8EG 9.82023-09-27
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_ip.php.
- CVE-2023-43256MEDIUMCVSS 6.5EG 6.52023-09-25
A path traversal in Gladys Assistant v4.26.1 and below allows authenticated attackers to extract sensitive files in the host machine by exploiting a non-sanitized user input.
- CVE-2023-43382HIGHCVSS 8.8EG 8.82023-09-25
Directory Traversal vulnerability in itechyou dreamer CMS v.4.1.3 allows a remote attacker to execute arbitrary code via the themePath in the uploaded template function.
- CVE-2023-43586HIGHCVSS 7.3EG 7.32023-12-13
Path traversal in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows may allow an authenticated user to conduct an escalation of privilege via network access.
- CVE-2023-43616MEDIUMCVSS 5.5EG 5.52023-09-20
An issue was discovered in Croc through 9.6.5. A sender can cause a receiver to overwrite files during ZIP extraction.
- CVE-2023-43627MEDIUMCVSS 5.7EG 5.72023-10-03
Path traversal vulnerability in ACERA 1320 firmware ver.01.26 and earlier, and ACERA 1310 firmware ver.01.26 and earlier allows a network-adjacent authenticated attacker to alter critical information such as system files by sending a speci…
- CVE-2023-43648MEDIUMCVSS 4.9EG 4.92023-10-30
baserCMS is a website development framework. Prior to version 4.8.0, there is a Directory Traversal Vulnerability in the form submission data management feature of baserCMS. Version 4.8.0 contains a patch for this issue.
- CVE-2023-43662HIGHCVSS 8.6EG 9.02023-09-28
ShokoServer is a media server which specializes in organizing anime. In affected versions the `/api/Image/WithPath` endpoint is accessible without authentication and is supposed to return default server images. The endpoint accepts the par…
- CVE-2023-43801MEDIUMCVSS 6.1EG 6.12023-10-18
Arduino Create Agent is a package to help manage Arduino development. This vulnerability affects the endpoint `/v2/pkgs/tools/installed` and the way it handles plugin names supplied as user input. A user who has the ability to perform HTTP…
- CVE-2023-43802HIGHCVSS 7.1EG 7.12023-10-18
Arduino Create Agent is a package to help manage Arduino development. This vulnerability affects the endpoint `/upload` which handles request with the `filename` parameter. A user who has the ability to perform HTTP requests to the localho…
- CVE-2023-43803MEDIUMCVSS 6.1EG 6.12023-10-18
Arduino Create Agent is a package to help manage Arduino development. This vulnerability affects the endpoint `/v2/pkgs/tools/installed` and the way it handles plugin names supplied as user input. A user who has the ability to perform HTTP…
- CVE-2023-43825HIGHCVSS 7.8EG 7.82023-09-27
Relative path traversal vulnerability in Shihonkanri Plus Ver9.0.3 and earlier allows a local attacker to execute an arbitrary code by having a legitimate user import a specially crafted backup file of the product..
- CVE-2023-44169CRITICALCVSS 9.8EG 9.82023-09-27
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_notify.php.
- CVE-2023-44170CRITICALCVSS 9.8EG 9.82023-09-27
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_ping.php.
- CVE-2023-44171CRITICALCVSS 9.8EG 9.82023-09-27
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_smtp.php.
- CVE-2023-44172CRITICALCVSS 9.8EG 9.82023-09-27
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_weixin.php.
- CVE-2023-44251HIGHCVSS 8.3EG 8.32023-12-13
** UNSUPPORTED WHEN ASSIGNED **A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability [CWE-22] in Fortinet FortiWAN version 5.2.0 through 5.2.1 and version 5.1.1. through 5.1.2 may allow an authentic…
- CVE-2023-44256MEDIUMCVSS 6.5EG 6.52023-10-20
A server-side request forgery vulnerability [CWE-918] in Fortinet FortiAnalyzer version 7.4.0, version 7.2.0 through 7.2.3 and before 7.0.8 and FortiManager version 7.4.0, version 7.2.0 through 7.2.3 and before 7.0.8 allows a remote attack…
- CVE-2023-44278MEDIUMCVSS 6.7EG 6.72023-12-14
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a path traversal vulnerability. A local high privileged attacker could potentially exploit this vulnerability, to gain unauthorized read a…
- CVE-2023-44306MEDIUMCVSS 6.5EG 6.52023-12-04
Dell DM5500 contains a path traversal vulnerability in the appliance. A remote attacker with high privileges could potentially exploit this vulnerability to overwrite configuration files stored on the server filesystem.
- CVE-2023-44395MEDIUMCVSS 4.9EG 4.92024-01-22
Autolab is a course management service that enables instructors to offer autograded programming assignments to their students over the Web. Path traversal vulnerabilities were discovered in Autolab's assessment functionality in versions of…
- CVE-2023-44451HIGHCVSS 7.8EG 7.82024-05-03
Linux Mint Xreader EPUB File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Linux Mint Xreader. User interaction is require…
- CVE-2023-4480MEDIUMCVSS 5.5EG 5.52023-09-05
Due to an out-of-date dependency in the “Fusion File Manager” component accessible through the admin panel, an attacker can send a crafted request that allows them to read the contents of files on the system accessible within the priv…
- CVE-2023-45026MEDIUMCVSS 5.5EG 5.52024-02-02
A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and expose sensitive data …
- CVE-2023-45027MEDIUMCVSS 5.5EG 5.52024-02-02
A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and expose sensitive data …
- CVE-2023-45197CRITICALCVSS 9.8EG 9.82024-06-21
The file upload plugin in Adminer and AdminerEvo allows an attacker to upload a file with a table name of “..” to the root of the Adminer directory. The attacker can effectively guess the name of the uploaded file and execute it. Admin…
- CVE-2023-45277HIGHCVSS 7.5EG 7.52023-10-19
Yamcs 5.8.6 is vulnerable to directory traversal (issue 1 of 2). The vulnerability is in the storage functionality of the API and allows one to escape the base directory of the buckets, freely navigate system directories, and read arbitrar…
- CVE-2023-45278CRITICALCVSS 9.1EG 9.12023-10-19
Directory Traversal vulnerability in the storage functionality of the API in Yamcs 5.8.6 allows attackers to delete arbitrary files via crafted HTTP DELETE request.
- CVE-2023-45283HIGHCVSS 7.5EG 7.52023-11-09
The filepath package does not recognize paths with a \??\ prefix as special. On Windows, a path beginning with \??\ is a Root Local Device path equivalent to a path beginning with \\?\. Paths with a \??\ prefix may be used to access arbitr…
- CVE-2023-45316HIGHCVSS 7.3EG 7.32023-12-12
Mattermost fails to validate if a relative path is passed in /plugins/playbooks/api/v0/telemetry/run/<telem_run_id> as a telemetry run ID, allowing an attacker to use a path traversal payload that points to a different endpoint leading to …
- CVE-2023-45352HIGHCVSS 8.8EG 8.82023-10-09
Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an authenticated attacker to execute arbitrary code on the operating system via a Common Management Portal web interface Path traversal vulnerabilit…
- CVE-2023-45382HIGHCVSS 7.5EG 7.52023-11-17
In the module "SoNice Retour" (sonice_retour) up to version 2.1.0 from Common-Services for PrestaShop, a guest can download personal information without restriction by performing a path traversal attack. Due to a lack of permissions contro…
- CVE-2023-45383HIGHCVSS 7.5EG 7.52023-10-18
In the module "SoNice etiquetage" (sonice_etiquetage) up to version 2.5.9 from Common-Services for PrestaShop, a guest can download personal information without restriction by performing a path traversal attack. Due to a lack of permission…
- CVE-2023-45385HIGHCVSS 7.5EG 7.52024-04-30
ProQuality pqprintshippinglabels before v.4.15.0 is vulnerable to Directory Traversal via the pqprintshippinglabels module.
- CVE-2023-45652MEDIUMCVSS 6.5EG 6.52024-05-17
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Justin Silver Remote Content Shortcode allows PHP Local File Inclusion.This issue affects Remote Content Shortcode: from n/a through 1.5.
- CVE-2023-45685CRITICALCVSS 9.1EG 9.12023-10-16
Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attacker to write a file to any location on the filesystem via path trave…
- CVE-2023-45686HIGHCVSS 7.2EG 7.22023-10-16
Insufficient path validation when writing a file via WebDAV in South River Technologies' Titan MFT and Titan SFTP servers on Linux allows an authenticated attacker to write a file to any location on the filesystem via path traversal
- CVE-2023-45688MEDIUMCVSS 4.3EG 4.32023-10-16
Lack of sufficient path validation in South River Technologies' Titan MFT and Titan SFTP servers on Linux allows an authenticated attacker to get the size of an arbitrary file on the filesystem using path traversal in the ftp "SIZE" command
- CVE-2023-45689MEDIUMCVSS 6.5EG 6.52023-10-16
Lack of sufficient path validation in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attacker with administrative privileges to read any file on the filesystem via path traversal
- CVE-2023-45722HIGHCVSS 8.8EG 8.82024-01-03
HCL DRYiCE MyXalytics is impacted by path traversal arbitrary file read vulnerability because it uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent di…
- CVE-2023-45723HIGHCVSS 7.6EG 7.62024-01-03
HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. Certain endpoints permit users to manipulate the path (including the file name) where these files are stored on the server.
- CVE-2023-45823HIGHCVSS 7.5EG 7.52023-10-19
Artifact Hub is a web-based application that enables finding, installing, and publishing packages and configurations for CNCF projects. During a security audit of Artifact Hub's code base a security researcher identified a bug in which by …
- CVE-2023-45855HIGHCVSS 7.5EG 7.52023-10-14
qdPM 9.2 allows Directory Traversal to list files and directories by navigating to the /uploads URI.
- CVE-2023-45867MEDIUMCVSS 6.5EG 6.52023-10-26
ILIAS (2013-09-12 release) contains a medium-criticality Directory Traversal local file inclusion vulnerability in the ScormAicc module. An attacker with a privileged account, typically holding the tutor role, can exploit this to gain unau…
- CVE-2023-45868HIGHCVSS 8.1EG 6.52023-10-26
The Learning Module in ILIAS 7.25 (2023-09-12 release) allows an attacker (with basic user privileges) to achieve a high-impact Directory Traversal attack on confidentiality and availability. By exploiting this network-based vulnerability,…
- CVE-2023-45880HIGHCVSS 7.2EG 7.22023-11-14
GibbonEdu Gibbon through version 25.0.0 allows Directory Traversal via the report template builder. An attacker can create a new Asset Component. The templateFileDestination parameter can be set to an arbitrary pathname (and extension). Th…
- CVE-2023-4593MEDIUMCVSS 6.5EG 6.52023-11-23
Path traversal vulnerability whose exploitation could allow an authenticated remote user to bypass SecurityManager's intended restrictions and list a parent directory via any filename, such as a multiple ..%2F value affecting the 'dodoc' p…
- CVE-2023-46119HIGHCVSS 7.5EG 7.52023-10-25
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Parse Server crashes when uploading a file without extension. This vulnerability has been patched in versions 5.5.6 and 6.3.1.
- CVE-2023-46122LOWCVSS 3.9EG 3.92023-10-23
sbt is a build tool for Scala, Java, and others. Given a specially crafted zip or JAR file, `IO.unzip` allows writing of arbitrary file. This would have potential to overwrite `/root/.ssh/authorized_keys`. Within sbt's main code, `IO.unzip…
- CVE-2023-4613CRITICALCVSS 9.8EG 9.82023-09-04
This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG LED Assistant. Authentication is not required to exploit this vulnerability. The specific flaw exists within the /api/settings/upload endp…
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →