CWE-22— Path Traversal
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.— MITRE CWE catalog
8,798 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 106 of 176
- CVE-2023-39506HIGHCVSS 7.8EG 7.82024-05-03
PDF-XChange Editor createDataObject Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required…
- CVE-2023-39525MEDIUMCVSS 6.5EG 6.52023-08-07
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, in the back office, files can be compromised using path traversal by replaying the import file deletion query with a specified file path that uses the travers…
- CVE-2023-39528MEDIUMCVSS 6.8EG 6.82023-08-07
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, the `displayAjaxEmailHTML` method can be used to read any file on the server, potentially even outside of the project if the server is not correctly configure…
- CVE-2023-39559MEDIUMCVSS 5.3EG 5.32023-08-29
AudimexEE 15.0 was discovered to contain a full path disclosure vulnerability.
- CVE-2023-39584HIGHCVSS 7.5EG 7.52023-09-08
Hexo up to v7.0.0 (RC2) was discovered to contain an arbitrary file read vulnerability.
- CVE-2023-3961CRITICALCVSS 9.1EG 6.52023-11-03
A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within a private directory. Samba typically uses this mechanism to connect SMB clients to remote procedure call (RPC…
- CVE-2023-39611HIGHCVSS 7.5EG 7.52024-02-02
An issue in Software FX Chart FX 7 version 7.0.4962.20829 allows attackers to enumerate and read files from the local filesystem by sending crafted web requests.
- CVE-2023-39699CRITICALCVSS 9.8EG 9.82023-08-25
IceWarp Mail Server v10.4.5 was discovered to contain a local file inclusion (LFI) vulnerability via the component /calendar/minimizer/index.php. This vulnerability allows attackers to include or execute files from the local file system of…
- CVE-2023-39810HIGHCVSS 7.8EG 7.82023-08-28
An issue in the CPIO command of Busybox v1.33.2 allows attackers to execute a directory traversal.
- CVE-2023-39912MEDIUMCVSS 4.9EG 4.92023-08-31
Zoho ManageEngine ADManager Plus before 7203 allows Help Desk Technician users to read arbitrary files on the machine where this product is installed.
- CVE-2023-39916CRITICALCVSS 9.3EG 9.32023-09-13
NLnet Labs’ Routinator 0.9.0 up to and including 0.12.1 as well as 0.14.0 up to and including 0.14.2 contains a possible path traversal vulnerability in the optional, off-by-default keep-rrdp-responses feature that allows users to store …
- CVE-2023-39957HIGHCVSS 7.8EG 7.82023-08-10
Nextcloud Talk Android allows users to place video and audio calls through Nextcloud on Android. Prior to version 17.0.0, an unprotected intend allowed malicious third party apps to trick the Talk Android app into writing files outside of …
- CVE-2023-39964HIGHCVSS 7.5EG 7.52023-08-10
1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, arbitrary file reads allow an attacker to read arbitrary important configuration files on the server. In the `api/v1/file.go` file, there i…
- CVE-2023-40026MEDIUMCVSS 5.0EG 5.02023-09-27
Argo CD is a declarative continuous deployment framework for Kubernetes. In Argo CD versions prior to 2.3 (starting at least in v0.1.0, but likely in any version using Helm before 2.3), using a specifically-crafted Helm file could referenc…
- CVE-2023-40028MEDIUMCVSS 4.9EG 4.92023-08-15
Ghost is an open source content management system. Versions prior to 5.59.1 are subject to a vulnerability which allows authenticated users to upload files that are symlinks. This can be exploited to perform an arbitrary file read of any f…
- CVE-2023-40054HIGHCVSS 8.0EG 8.02023-11-09
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolve…
- CVE-2023-40055HIGHCVSS 8.0EG 8.02023-11-09
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolve…
- CVE-2023-40160LOWCVSS 3.7EG 3.72024-03-18
Directory traversal vulnerability exists in Mailing List Search CGI (pmmls.exe) included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a remote attacker may obtain arbitrary files on the server.
- CVE-2023-40264MEDIUMCVSS 4.3EG 4.32024-02-08
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated path traversal in the user interface.
- CVE-2023-40266CRITICALCVSS 9.8EG 9.82024-02-08
An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows path traversal.
- CVE-2023-40274HIGHCVSS 7.5EG 7.52023-08-14
An issue was discovered in zola 0.13.0 through 0.17.2. The custom implementation of a web server, available via the "zola serve" command, allows directory traversal. The handle_request function, used by the server to process HTTP requests,…
- CVE-2023-40279HIGHCVSS 7.5EG 7.52024-03-19
An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to main.do.
- CVE-2023-40280HIGHCVSS 7.5EG 7.52024-03-19
An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to popup.jsp.
- CVE-2023-40297HIGHCVSS 7.5EG 7.52024-05-15
Stakater Forecastle 1.0.139 and before allows %5C../ directory traversal in the website component.
- CVE-2023-40383LOWCVSS 3.3EG 3.32024-01-10
A path handling issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. An app may be able to access user-sensitive data.
- CVE-2023-40439LOWCVSS 3.3EG 3.32024-01-10
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to read sensitive location information.
- CVE-2023-40492CRITICALCVSS 9.1EG 8.22024-05-03
LG Simple Editor deleteCheckSession Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not requir…
- CVE-2023-40493CRITICALCVSS 9.8EG 9.82024-05-03
LG Simple Editor copySessionFolder Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required …
- CVE-2023-40494CRITICALCVSS 9.1EG 8.22024-05-03
LG Simple Editor deleteFolder Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to …
- CVE-2023-40495HIGHCVSS 7.5EG 7.52024-05-03
LG Simple Editor copyTemplateAll Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not re…
- CVE-2023-40496HIGHCVSS 7.5EG 7.52024-05-03
LG Simple Editor copyStickerContent Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not…
- CVE-2023-40497CRITICALCVSS 9.8EG 9.82024-05-03
LG Simple Editor saveXml Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to exploit…
- CVE-2023-40498CRITICALCVSS 9.8EG 9.82024-05-03
LG Simple Editor cp Command Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to expl…
- CVE-2023-40499CRITICALCVSS 9.1EG 8.22024-05-03
LG Simple Editor mkdir Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit…
- CVE-2023-40502CRITICALCVSS 9.1EG 8.22024-05-03
LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exp…
- CVE-2023-40508CRITICALCVSS 9.1EG 8.22024-05-03
LG Simple Editor putCanvasDB Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to e…
- CVE-2023-40509CRITICALCVSS 9.1EG 8.22024-05-03
LG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to …
- CVE-2023-40512MEDIUMCVSS 6.5EG 6.52024-05-03
LG Simple Editor PlayerController getImageByFilename Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Alth…
- CVE-2023-40513MEDIUMCVSS 6.5EG 6.52024-05-03
LG Simple Editor UserManageController getImageByFilename Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. …
- CVE-2023-40514MEDIUMCVSS 6.5EG 6.52024-05-03
LG Simple Editor FileManagerController getImageByFilename Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor.…
- CVE-2023-40517HIGHCVSS 7.5EG 7.52024-05-03
LG SuperSign Media Editor ContentRestController getObject Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG SuperSign Medi…
- CVE-2023-40532MEDIUMCVSS 4.3EG 4.32023-09-27
Path traversal vulnerability in Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with author or higher privilege to obtain partial information of the files on the web server.
- CVE-2023-40587MEDIUMCVSS 4.3EG 4.32023-08-25
Pyramid is an open source Python web framework. A path traversal vulnerability in Pyramid versions 2.0.0 and 2.0.1 impacts users of Python 3.11 that are using a Pyramid static view with a full filesystem path and have a `index.html` file t…
- CVE-2023-40597HIGHCVSS 7.8EG 7.82023-08-30
In Splunk Enterprise versions lower than 8.2.12, 9.0.6, and 9.1.1, an attacker can exploit an absolute path traversal to execute arbitrary code that is located on a separate disk.
- CVE-2023-40747HIGHCVSS 7.5EG 7.52024-03-18
Directory traversal vulnerability exists in A.K.I Software's PMailServer/PMailServer2 products' CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentR…
- CVE-2023-40826HIGHCVSS 7.5EG 7.52023-08-28
An issue in pf4j pf4j v.3.9.0 and before allows a remote attacker to obtain sensitive information and execute arbitrary code via the zippluginPath parameter.
- CVE-2023-40827HIGHCVSS 7.5EG 7.52023-08-28
An issue in pf4j pf4j v.3.9.0 and before allows a remote attacker to obtain sensitive information and execute arbitrary code via the loadpluginPath parameter.
- CVE-2023-40828HIGHCVSS 7.5EG 7.52023-08-28
An issue in pf4j pf4j v.3.9.0 and before allows a remote attacker to obtain sensitive information and execute arbitrary code via the expandIfZip method in the extract function.
- CVE-2023-40924HIGHCVSS 7.5EG 7.52023-09-08
SolarView Compact < 6.00 is vulnerable to Directory Traversal.
- CVE-2023-40930MEDIUMCVSS 6.8EG 6.82023-09-20
An issue in the directory /system/bin/blkid of Skyworth v3.0 allows attackers to perform a directory traversal via mounting the Udisk to /mnt/.
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →