CWE-22— Path Traversal
8,348 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 64 of 167
- CVE-2020-24621HIGHCVSS 8.8EG 8.82020-09-25
A remote code execution (RCE) vulnerability was discovered in the htmlformentry (aka HTML Form Entry) module before 3.11.0 for OpenMRS. By leveraging path traversal, a malicious Velocity Template Language file could be written to a directo…
- CVE-2020-24624HIGHCVSS 7.5EG 7.52020-09-23
Unathenticated directory traversal in the DownloadServlet class execute() method can lead to arbitrary file reads in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9.
- CVE-2020-24625HIGHCVSS 7.5EG 7.52020-09-23
Unathenticated directory traversal in the ReceiverServlet class doGet() method can lead to arbitrary file reads in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9.
- CVE-2020-24626CRITICALCVSS 9.8EG 9.82020-09-23
Unathenticated directory traversal in the ReceiverServlet class doPost() method can lead to arbitrary remote code execution in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9.
- CVE-2020-24855MEDIUMCVSS 5.3EG 5.32022-12-15
Directory Traversal vulnerability in easywebpack-cli before 4.5.2 allows attackers to obtain sensitive information via crafted GET request.
- CVE-2020-24990HIGHCVSS 7.5EG 7.52020-10-28
An issue was discovered in QSC Q-SYS Core Manager 8.2.1. By utilizing the TFTP service running on UDP port 69, a remote attacker can perform a directory traversal and obtain operating system files via a TFTP GET request, as demonstrated by…
- CVE-2020-25032HIGHCVSS 7.5EG 7.52020-08-31
An issue was discovered in Flask-CORS (aka CORS Middleware for Flask) before 3.0.9. It allows ../ directory traversal to access private resources because resource matching does not ensure that pathnames are in a canonical format.
- CVE-2020-2504MEDIUMCVSS 5.8EG 5.82020-12-24
If exploited, this absolute path traversal vulnerability could allow attackers to traverse files in File Station. QNAP has already fixed these issues in QES 2.1.1 Build 20201006 and later.
- CVE-2020-25068HIGHCVSS 7.5EG 7.52020-09-03
Setelsa Conacwin v3.7.1.2 is vulnerable to a local file inclusion vulnerability. This vulnerability allows a remote unauthenticated attacker to read internal files on the server via an http:IP:PORT/../../path/file_to_disclose Directory Tra…
- CVE-2020-25074CRITICALCVSS 9.8EG 9.82020-11-10
The cache action in action/cache.py in MoinMoin through 1.9.10 allows directory traversal through a crafted HTTP request. An attacker who can upload attachments to the wiki can use this to achieve remote code execution.
- CVE-2020-25133HIGHCVSS 8.8EG 8.82020-09-25
An issue was discovered in Observium Professional, Enterprise & Community 20.8.10631. It is vulnerable to directory traversal and local file inclusion due to the fact that there is an unrestricted possibility of loading any file with an in…
- CVE-2020-25134HIGHCVSS 8.8EG 8.82020-09-25
An issue was discovered in Observium Professional, Enterprise & Community 20.8.10631. It is vulnerable to directory traversal and local file inclusion due to the fact that there is an unrestricted possibility of loading any file with an in…
- CVE-2020-25136HIGHCVSS 8.8EG 8.82020-09-25
An issue was discovered in Observium Professional, Enterprise & Community 20.8.10631. It is vulnerable to directory traversal and local file inclusion due to the fact that there is an unrestricted possibility of loading any file with an in…
- CVE-2020-25144HIGHCVSS 8.8EG 8.82020-09-25
An issue was discovered in Observium Professional, Enterprise & Community 20.8.10631. It is vulnerable to directory traversal and local file inclusion due to the fact that there is an unrestricted possibility of loading any file with an in…
- CVE-2020-25145HIGHCVSS 8.8EG 8.82020-09-25
An issue was discovered in Observium Professional, Enterprise & Community 20.8.10631. It is vulnerable to directory traversal and local file inclusion due to the fact that there is an unrestricted possibility of loading any file with an in…
- CVE-2020-25149HIGHCVSS 8.8EG 8.82020-09-25
An issue was discovered in Observium Professional, Enterprise & Community 20.8.10631. It is vulnerable to directory traversal and local file inclusion due to the fact that there is an unrestricted possibility of loading any file with an in…
- CVE-2020-25150HIGHCVSS 7.6EG 8.82022-04-14
A relative path traversal attack in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows attackers with service user privileges to upload arbitrary files. By uploading …
- CVE-2020-25176CRITICALCVSS 9.1EG 9.82022-03-18
Some commands used by the Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x eXchange Layer (IXL) protocol perform various file operations in the file system. Since the parameter pointing to the file name is not checked for reserved …
- CVE-2020-25237HIGHCVSS 8.1EG 8.12021-02-09
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP1 Update 1), SINEMA Server (All versions < V14.0 SP2 Update 2). When uploading files to an affected system using a zip container, the system does not correctly check i…
- CVE-2020-25243MEDIUMCVSS 5.1EG 5.12021-04-22
A vulnerability has been identified in LOGO! Soft Comfort (All versions < V8.4). A zip slip vulnerability could be triggered while importing a compromised project file to the affected software. Chained with other vulnerabilities this vulne…
- CVE-2020-25247HIGHCVSS 7.5EG 7.52020-09-11
An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. Directory traversal exists for writing to files, as demonstrated by the FileName parameter.
- CVE-2020-25248HIGHCVSS 7.5EG 7.52020-09-11
An issue was discovered in Hyland OnBase through 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. Directory traversal exists for reading files, as demonstrated by the FileNa…
- CVE-2020-25540HIGHCVSS 7.5EG 7.52020-09-14
ThinkAdmin v6 is affected by a directory traversal vulnerability. An unauthorized attacker can read arbitrarily file on a remote server via GET request encode parameter.
- CVE-2020-25617HIGHCVSS 8.8EG 8.82020-12-16
An issue was discovered in SolarWinds N-Central 12.3.0.670. The AdvancedScripts HTTP endpoint allows Relative Path Traversal by an authenticated user of the N-Central Administration Console (NAC), leading to execution of OS commands as roo…
- CVE-2020-25623HIGHCVSS 7.5EG 7.52020-10-02
Erlang/OTP 22.3.x before 22.3.4.6 and 23.x before 23.1 allows Directory Traversal. An attacker can send a crafted HTTP request to read arbitrary files, if httpd in the inets application is used.
- CVE-2020-25734MEDIUMCVSS 5.3EG 5.32020-09-18
webTareas through 2.1 allows files/Default/ Directory Listing.
- CVE-2020-25780HIGHCVSS 7.5EG 7.52020-10-29
In CommCell in Commvault before 14.68, 15.x before 15.58, 16.x before 16.44, 17.x before 17.29, and 18.x before 18.13, Directory Traversal can occur such that an attempt to view a log file can instead view a file outside of the log-files f…
- CVE-2020-25872MEDIUMCVSS 4.9EG 4.92021-10-29
A vulnerability exists within the FileManagerController.php function in FrogCMS 0.9.5 which allows an attacker to perform a directory traversal attack via a GET request urlencode parameter.
- CVE-2020-25873MEDIUMCVSS 6.5EG 6.52021-10-29
A directory traversal vulnerability in the component system/manager/class/web/database.php was discovered in Baijiacms V4 which allows attackers to arbitrarily delete folders on the server via the "id" parameter.
- CVE-2020-25881MEDIUMCVSS 5.5EG 5.52021-10-29
A vulnerability was discovered in the filename parameter in pathindex.php?r=cms-backend/attachment/delete&sub=&filename=../../../../111.txt&filetype=image/jpeg of the master version of RKCMS. This vulnerability allows for an attacker to pe…
- CVE-2020-25985HIGHCVSS 8.1EG 8.12020-10-07
MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Any authenticated user can delete files on and off the webserver (php files can be unlinked and not deleted).
- CVE-2020-26037CRITICALCVSS 9.8EG 9.82023-08-16
Directory Traversal vulnerability in Server functionalty in Even Balance Punkbuster version 1.902 before 1.905 allows remote attackers to execute arbitrary code.
- CVE-2020-26065MEDIUMCVSS 6.5EG 6.52023-08-04
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The v…
- CVE-2020-26071HIGHCVSS 8.4EG 8.42024-11-18
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected device, which could result in a denial of service (DoS) condition. The vulnerabili…
- CVE-2020-26078MEDIUMCVSS 6.5EG 6.52020-11-18
A vulnerability in the file system of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to overwrite files on an affected system. The vulnerability is due to insufficient file system protections. An attac…
- CVE-2020-26252HIGHCVSS 8.7EG 8.72021-01-20
OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.6, there is a vulnerability which enables remote code execution. In affected versions an administrator with permission to update product…
- CVE-2020-26279HIGHCVSS 7.7EG 7.72021-03-24
go-ipfs is an open-source golang implementation of IPFS which is a global, versioned, peer-to-peer filesystem. In go-ipfs before version 0.8.0-rc1, it is possible for path traversal to occur with DAGs containing relative paths during retri…
- CVE-2020-26285HIGHCVSS 8.7EG 8.72021-01-21
OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, there is a vulnerability which enables remote code execution. In affected versions an administrator with permission to import/export …
- CVE-2020-26295HIGHCVSS 8.7EG 8.72021-01-21
OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, an administrator with permission to import/export data and to edit cms pages was able to inject an executable file on the server via …
- CVE-2020-26299MEDIUMCVSS 6.3EG 6.32021-02-10
ftp-srv is an open-source FTP server designed to be simple yet configurable. In ftp-srv before version 4.4.0 there is a path-traversal vulnerability. Clients of FTP servers utilizing ftp-srv hosted on Windows machines can escape the FTP us…
- CVE-2020-26405HIGHCVSS 7.1EG 7.12020-11-17
Path traversal vulnerability in package upload functionality in GitLab CE/EE starting from 12.8 allows an attacker to save packages in arbitrary locations. Affected versions are >=12.8, <13.3.9,>=13.4, <13.4.5,>=13.5, <13.5.2.
- CVE-2020-26603MEDIUMCVSS 5.3EG 5.32020-10-06
An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. Sticker Center allows directory traversal for an unprivileged process to read arbitrary files. The Samsung ID is SVE-2020-18433 (October 2020).
- CVE-2020-26650MEDIUMCVSS 5.3EG 5.32020-10-22
AtomXCMS 2.0 is affected by Arbitrary File Read via admin/dump.php
- CVE-2020-26806HIGHCVSS 8.8EG 8.82021-07-31
admin/file.do in ObjectPlanet Opinio before 7.15 allows Unrestricted File Upload of executable JSP files, resulting in remote code execution, because filePath can have directory traversal and fileContent can be valid JSP code.
- CVE-2020-26837CRITICALCVSS 9.1EG 9.12020-12-09
SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, allows an authenticated user to upload a malicious script that can exploit an existing path traversal vulnerability to compromise confidentiality exposing elements of th…
- CVE-2020-27128MEDIUMCVSS 6.5EG 6.52020-11-06
A vulnerability in the application data endpoints of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to write arbitrary files to an affected system. The vulnerability is due to improper validation of requests to…
- CVE-2020-27160CRITICALCVSS 9.8EG 9.82020-10-27
Addressed remote code execution vulnerability in AvailableApps.php that allowed escalation of privileges in Western Digital My Cloud NAS devices prior to 5.04.114 (issue 3 of 3).
- CVE-2020-27304CRITICALCVSS 9.8EG 9.82021-10-21
The CivetWeb web library does not validate uploaded filepaths when running on an OS other than Windows, when using the built-in HTTP form-based file upload mechanism, via the mg_handle_form_request API. Web applications that use the file u…
- CVE-2020-27385HIGHCVSS 8.1EG 8.12020-11-12
Incorrect Access Control in the FileEditor (/Admin/Views/FileEditor/) in FlexDotnetCMS before v1.5.11 allows an authenticated remote attacker to read and write to existing files outside the web root. The files can be accessed via directory…
- CVE-2020-27467HIGHCVSS 7.5EG 9.02022-02-24
A Directory Traversal vulnerability exits in Processwire CMS before 2.7.1 via the download parameter to index.php.
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →