CWE-22— Path Traversal
4,763 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 2 of 96
- CVE-2014-5236HIGHCVSS 7.5EG 7.52020-01-31
Multiple absolute path traversal vulnerabilities in documentconverter in Open-Xchange (OX) AppSuite before 7.4.2-rev10 and 7.6.x before 7.6.0-rev10 allow remote attackers to read application files via a full pathname in a crafted (1) OLE O…
- CVE-2014-5436HIGHCVSS 7.52019-04-08
A directory traversal vulnerability exists in the confd.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, which could lead to possible information disclosure. Honeywell strongly encourages…
- CVE-2014-7174MEDIUMCVSS 5.3EG 5.32020-06-01
FarLinX X25 Gateway through 2014-09-25 allows directory traversal via the log-handling feature.
- CVE-2014-7951MEDIUMCVSS 4.6EG 4.62020-02-20
Directory traversal vulnerability in the Android debug bridge (aka adb) in Android 4.0.4 allows physically proximate attackers with a direct connection to the target Android device to write to arbitrary files owned by system via a .. (dot …
- CVE-2014-8741CRITICALCVSS 9.8EG 9.82020-01-27
Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors.
- CVE-2014-8742HIGHCVSS 7.5EG 7.52020-01-27
Directory traversal vulnerability in the ReportDownloadServlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to read arbitrary files via unspecified vectors.
- CVE-2014-8939MEDIUMCVSS 5.3EG 5.32020-06-01
Lexiglot through 2014-11-20 allows remote attackers to obtain sensitive information (full path) via an include/smarty/plugins/modifier.date_format.php request if PHP has a non-recommended configuration that produces warning messages.
- CVE-2014-9014MEDIUMCVSS 4.3EG 4.32019-11-06
Directory traversal vulnerability in the ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin before 2.4.1 for WordPress allows remote authenticated users to download arbitrary files via a .. (dot dot) in the file …
- CVE-2014-9356HIGHCVSS 8.6EG 8.62019-12-02
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.
- CVE-2014-9485MEDIUMCVSS 5.52018-01-16
Directory traversal vulnerability in the do_extract_currentfile function in miniunz.c in miniunzip in minizip before 1.1-5 might allow remote attackers to write to arbitrary files via a crafted entry in a ZIP archive.
- CVE-2014-9609MEDIUMCVSS 5.3EG 5.32020-02-19
Directory traversal vulnerability in webadmin/reporter/view_server_log.php in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to list directory contents via a .. (dot dot) in the log parameter i…
- CVE-2015-0984NONECVSS 0.0EG 0.02015-03-31
Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL100…
- CVE-2015-10024MEDIUMCVSS 5.5EG 9.82023-01-07
A vulnerability classified as critical was found in hoffie larasync. This vulnerability affects unknown code of the file repository/content/file_storage.go. The manipulation leads to path traversal. The name of the patch is 776bad422f4bd49…
- CVE-2015-10030MEDIUMCVSS 5.5EG 5.52023-01-08
A vulnerability has been found in SUKOHI Surpass and classified as critical. This vulnerability affects unknown code of the file src/Sukohi/Surpass/Surpass.php. The manipulation of the argument dir leads to pathname traversal. Upgrading to…
- CVE-2015-10043MEDIUMCVSS 5.5EG 8.82023-01-14
A vulnerability, which was classified as critical, was found in abreen Apollo. This affects an unknown part. The manipulation of the argument file leads to path traversal. The patch is named 6206406630780bbd074aff34f4683fb764faba71. It is …
- CVE-2015-10105MEDIUMCVSS 6.3EG 6.32023-05-01
A vulnerability, which was classified as critical, was found in IP Blacklist Cloud Plugin up to 3.42 on WordPress. This affects the function valid_js_identifier of the file ip_blacklist_cloud.php of the component CSV File Import. The manip…
- CVE-2015-1396HIGHCVSS 7.5EG 7.52019-11-25
A Directory Traversal vulnerability exists in the GNU patch before 2.7.4. A remote attacker can write to arbitrary files via a symlink attack in a patch file. NOTE: this issue exists because of an incomplete fix for CVE-2015-1196.
- CVE-2015-1503HIGHCVSS 7.5EG 7.52018-05-08
Multiple directory traversal vulnerabilities in IceWarp Mail Server before 11.2 allow remote attackers to read arbitrary files via a (1) .. (dot dot) in the file parameter to a webmail/client/skins/default/css/css.php page or .../. (dot do…
- CVE-2015-2060MEDIUMCVSS 5.3EG 5.32019-11-29
cabextract before 1.6 does not properly check for leading slashes when extracting files, which allows remote attackers to conduct absolute directory traversal attacks via a malformed UTF-8 character that is changed to a UTF-8 encoded slash.
- CVE-2015-2073HIGHCVSS 7.5EG 7.52021-08-09
The File RepositoRy Server (FRS) CORBA listener in SAP BussinessObjects Edge 4.0 allows remote attackers to read arbitrary files via a full pathname, aka SAP Note 2018682.
- CVE-2015-2074HIGHCVSS 7.5EG 7.52021-08-09
The File Repository Server (FRS) CORBA listener in SAP BussinessObjects Edge 4.0 allows remote attackers to write to arbitrary files via a full pathname, aka SAP Note 2018681.
- CVE-2015-3151HIGHCVSS 7.8EG 7.82020-01-14
Directory traversal vulnerability in abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to read, write to, or change ownership of arbitrary files via unspecified vectors to the (1) NewProblem, (2) GetInfo, (3) SetElement, …
- CVE-2015-3309HIGHCVSS 7.5EG 7.52020-02-13
Directory traversal vulnerability in node/utils/Minify.js in Etherpad 1.1.2 through 1.5.4 allows remote attackers to read arbitrary files with permissions of the user running the service via a .. (dot dot) in the path parameter of HTTP API…
- CVE-2015-4461MEDIUMCVSS 6.52018-02-05
Absolute path traversal vulnerability in eFront CMS 3.6.15.4 and earlier allows remote Professor users to obtain sensitive information via a full pathname in the other parameter.
- CVE-2015-4617HIGHCVSS 7.52019-02-15
Vulnerability in Easy2map-photos WordPress Plugin v1.09 MapPinImageUpload.php and MapPinIconSave.php allows path traversal when specifying file names creating files outside of the upload directory.
- CVE-2015-4632HIGHCVSS 7.52018-10-18
Multiple directory traversal vulnerabilities in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, 3.18.x before 3.18.08, and 3.20.x before 3.20.1 allow remote attackers to read arbitrary files via a ..%2f (dot dot encoded slash) in the te…
- CVE-2015-5079HIGHCVSS 7.52018-02-28
Directory traversal vulnerability in widgets/logs.php in BlackCat CMS before 1.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the dl parameter.
- CVE-2015-5467CRITICALCVSS 9.8EG 9.82023-09-21
web\ViewAction in Yii (aka Yii2) 2.x before 2.0.5 allows attackers to execute any local .php file via a relative path in the view parameeter.
- CVE-2015-5952CRITICALCVSS 9.8EG 9.82020-01-15
Directory traversal vulnerability in Thomson Reuters for FATCA before 5.2 allows remote attackers to execute arbitrary files via the item parameter.
- CVE-2015-6589HIGHCVSS 8.8EG 8.82020-02-13
Directory traversal vulnerability in Kaseya Virtual System Administrator (VSA) 7.0.0.0 before 7.0.0.33, 8..0.0.0 before 8.0.0.23, 9.0.0.0 before 9.0.0.19, and 9.1.0.0 before 9.1.0.9 allows remote authenticated users to write to and execute…
- CVE-2015-6591MEDIUMCVSS 5.5EG 5.52020-01-15
Directory traversal vulnerability in application/templates/amelia/loadjs.php in Free Reprintables ArticleFR 3.0.7 and earlier allows local users to read arbitrary files via the s parameter.
- CVE-2015-7851MEDIUMCVSS 6.5EG 6.52020-01-28
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP before 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated …
- CVE-2015-8535HIGHCVSS 7.8EG 7.82020-03-27
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A directory traversal vulnerability was discovered (fixed and publicly disclosed in 2015) in Lenovo Solution Center (LSC) prior to version 3.3.002 that cou…
- CVE-2015-9250HIGHCVSS 7.52018-01-12
An issue was discovered in Skybox Platform before 7.5.201. Directory Traversal exists in /skyboxview/webskybox/attachmentdownload and /skyboxview/webskybox/filedownload via the tempFileName parameter.
- CVE-2015-9266CRITICALCVSS 9.82018-09-05
The web management interface of Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP (formerly TOUGHSwitch) allows an unauthenticated attacker to upload and write arbitrary files using directory traversal techniques. An attacker can exp…
- CVE-2015-9275MEDIUMCVSS 5.32019-01-07
ARC 5.21q allows directory traversal via a full pathname in an archive file.
- CVE-2015-9277CRITICALCVSS 9.12019-01-16
MailEnable before 8.60 allows Directory Traversal for reading the messages of other users, uploading files, and deleting files because "/../" and "/.. /" are mishandled.
- CVE-2015-9287CRITICALCVSS 9.82019-05-13
Directory Traversal was discovered in University of Cambridge mod_ucam_webauth before 2.0.2. The key identification field ("kid") of the IdP's HTTP response message ("WLS-Response") can be manipulated by an attacker. The "kid" field is not…
- CVE-2015-9406HIGHCVSS 7.5EG 9.02019-09-20
Directory traversal vulnerability in the mTheme-Unus theme before 2.3 for WordPress allows an attacker to read arbitrary files via a .. (dot dot) in the files parameter to css/css.php.
- CVE-2015-9463HIGHCVSS 7.5EG 7.52019-10-10
The s3bubble-amazon-s3-audio-streaming plugin 2.0 for WordPress has directory traversal via the adverts/assets/plugins/ultimate/content/downloader.php path parameter.
- CVE-2015-9464HIGHCVSS 7.5EG 7.52019-10-10
The s3bubble-amazon-s3-html-5-video-with-adverts plugin 0.7 for WordPress has directory traversal via the adverts/assets/plugins/ultimate/content/downloader.php path parameter.
- CVE-2015-9470HIGHCVSS 7.5EG 7.52019-10-10
The history-collection plugin through 1.1.1 for WordPress has directory traversal via the download.php var parameter.
- CVE-2015-9473HIGHCVSS 7.5EG 7.52019-10-10
The estrutura-basica theme through 2015-09-13 for WordPress has directory traversal via the scripts/download.php arquivo parameter.
- CVE-2015-9480HIGHCVSS 7.5EG 7.52019-10-10
The RobotCPA plugin 5 for WordPress has directory traversal via the f.php l parameter.
- CVE-2015-9538MEDIUMCVSS 6.5EG 6.52019-11-26
The NextGEN Gallery plugin before 2.1.15 for WordPress allows ../ Directory Traversal in path selection.
- CVE-2015-9546MEDIUMCVSS 4.8EG 4.82020-04-10
An issue was discovered on Samsung mobile devices with KK(4.4) and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker can modify the client-server data stream …
- CVE-2016-10528MEDIUMCVSS 4.92018-05-31
restafary is a REpresentful State Transfer API for Creating, Reading, Using, Deleting files on a server from the web. Restafary before 1.6.1 is able to set up a root path, which should only allow it to run inside of that root path it speci…
- CVE-2016-10538LOWCVSS 3.52018-05-31
The package `node-cli` before 1.0.0 insecurely uses the lock_file and log_file. Both of these are temporary, but it allows the starting user to overwrite any file they have access to.
- CVE-2016-10561MEDIUMCVSS 5.32018-05-31
Bitty is a development web server tool that functions similar to `python -m SimpleHTTPServer`. Version 0.2.10 has a directory traversal vulnerability that is exploitable via the URL path in GET requests.
- CVE-2016-10726HIGHCVSS 7.52018-07-10
The XMLUI feature in DSpace before 3.6, 4.x before 4.5, and 5.x before 5.5 allows directory traversal via the themes/ path in an attack with two or more arbitrary characters and a colon before a pathname, as demonstrated by a themes/Refere…
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →