CWE-22— Path Traversal
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.— MITRE CWE catalog
8,741 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 49 of 175
- CVE-2018-3715MEDIUMCVSS 6.5EG 6.52018-06-07
glance node module before 3.0.4 suffers from a Path Traversal vulnerability due to lack of validation of path passed to it, which allows a malicious user to read content of any file with known path.
- CVE-2018-3724HIGHCVSS 7.5EG 7.52018-06-07
general-file-server node module suffers from a Path Traversal vulnerability due to lack of validation of currpath, which allows a malicious user to read content of any file with known path.
- CVE-2018-3725HIGHCVSS 7.5EG 7.52018-06-07
hekto node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.
- CVE-2018-3727HIGHCVSS 7.5EG 7.52018-06-07
626 node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.
- CVE-2018-3729HIGHCVSS 7.5EG 7.52018-06-07
localhost-now node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.
- CVE-2018-3730HIGHCVSS 7.5EG 7.52018-06-07
mcstatic node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to read content of any file with known path.
- CVE-2018-3731HIGHCVSS 7.5EG 7.52018-06-07
public node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to read content of any file with known path.
- CVE-2018-3732HIGHCVSS 7.5EG 7.52018-06-07
resolve-path node module before 1.4.0 suffers from a Path Traversal vulnerability due to lack of validation of paths with certain special characters, which allows a malicious user to read content of any file with known path.
- CVE-2018-3733HIGHCVSS 7.5EG 7.52018-05-29
crud-file-server node module before 0.9.0 suffers from a Path Traversal vulnerability due to incorrect validation of url, which allows a malicious user to read content of any file with known path.
- CVE-2018-3734HIGHCVSS 7.5EG 7.52018-05-29
stattic node module suffers from a Path Traversal vulnerability due to lack of validation of path, which allows a malicious user to read content of any file with known path.
- CVE-2018-3744CRITICALCVSS 9.8EG 9.82018-05-29
The html-pages node module contains a path traversal vulnerabilities that allows an attacker to read any file from the server with cURL.
- CVE-2018-3758HIGHCVSS 8.8EG 8.82018-06-07
Unrestricted file upload (RCE) in express-cart module before 1.1.7 allows a privileged user to gain access in the hosting machine.
- CVE-2018-3760HIGHCVSS 7.5EG 9.02018-06-26
There is an information leak vulnerability in Sprockets. Versions Affected: 4.0.0.beta7 and lower, 3.7.1 and lower, 2.12.4 and lower. Specially crafted requests can be used to access files that exists on the filesystem that is outside an a…
- CVE-2018-3766HIGHCVSS 7.5EG 7.52018-07-05
Path traversal in buttle module versions <= 0.2.0 allows to read any file in the server.
- CVE-2018-3770MEDIUMCVSS 5.5EG 5.52018-07-20
A path traversal exists in markdown-pdf version <9.0.0 that allows a user to insert a malicious html code that can result in reading the local files.
- CVE-2018-3787HIGHCVSS 7.5EG 7.52018-08-31
Path traversal in simplehttpserver <v0.2.1 allows listing any file on the server.
- CVE-2018-3822CRITICALCVSS 9.8EG 9.82018-03-30
X-Pack Security versions 6.2.0, 6.2.1, and 6.2.2 are vulnerable to a user impersonation attack via incorrect XML canonicalization and DOM traversal. An attacker might have been able to impersonate a legitimate user if the SAML Identity Pro…
- CVE-2018-3949HIGHCVSS 7.5EG 7.52018-12-01
An exploitable information disclosure vulnerability exists in the HTTP server functionality of the TP-Link TL-R600VPN. A specially crafted URL can cause a directory traversal, resulting in the disclosure of sensitive system files. An attac…
- CVE-2018-4861MEDIUMCVSS 4.9EG 4.92018-06-26
A vulnerability has been identified in SCALANCE M875 (All versions). An authenticated remote attacker with access to the web interface (443/tcp), could potentially read and download arbitrary files from the device's file system. Successful…
- CVE-2018-5283HIGHCVSS 7.5EG 7.52018-01-08
The Photos in Wifi application 1.0.1 for iOS has directory traversal via the ext parameter to assets-library://asset/asset.php.
- CVE-2018-5287HIGHCVSS 7.5EG 7.52018-01-08
The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-about page.
- CVE-2018-5289HIGHCVSS 7.5EG 7.52018-01-08
The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-information page.
- CVE-2018-5290HIGHCVSS 7.5EG 7.52018-01-08
The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-transfer page.
- CVE-2018-5291HIGHCVSS 7.5EG 7.52018-01-08
The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-tools page.
- CVE-2018-5310MEDIUMCVSS 6.5EG 6.52018-01-09
In the "Media from FTP" plugin before 9.85 for WordPress, Directory Traversal exists via the searchdir parameter to the wp-admin/admin.php?page=mediafromftp-search-register URI.
- CVE-2018-5337CRITICALCVSS 9.8EG 9.82018-04-18
An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: directory traversal in the SCRIPT_NAME field when modifying existing scripts.
- CVE-2018-5430HIGHCVSS 8.8EG 9.0⚠ KEV2018-04-17
The Spring web flows of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, and TIBCO Jaspersoft Repo…
- CVE-2018-5445MEDIUMCVSS 5.3EG 5.32018-01-25
A Path Traversal issue was discovered in Advantech WebAccess/SCADA versions prior to V8.2_20170817. An attacker has read access to files within the directory structure of the target device.
- CVE-2018-5448MEDIUMCVSS 4.8EG 5.72018-05-04
Medtronic 2090 CareLink Programmer’s software deployment network contains a directory traversal vulnerability that could allow an attacker to read files on the system.
- CVE-2018-5700HIGHCVSS 8.8EG 8.82018-01-14
Winmail Server through 6.2 allows remote code execution by authenticated users who leverage directory traversal in a netdisk.php copy_folder_file call (in inc/class.ftpfolder.php) to move a .php file from the FTP folder into a web folder.
- CVE-2018-5716HIGHCVSS 8.1EG 8.12018-02-21
An issue was discovered in Reprise License Manager 11.0. This vulnerability is a Path Traversal where the attacker, by changing a field in the Web Request, can have access to files on the File System of the Server. By specifying a pathname…
- CVE-2018-5755MEDIUMCVSS 5.5EG 5.52018-06-16
Absolute path traversal vulnerability in the readerengine component in Open-Xchange OX App Suite before 7.6.3-rev3, 7.8.x before 7.8.2-rev4, 7.8.3 before 7.8.3-rev5, and 7.8.4 before 7.8.4-rev4 allows remote attackers to read arbitrary fil…
- CVE-2018-5997CRITICALCVSS 9.8EG 9.82018-01-25
An issue was discovered in the HTTP Server in RAVPower Filehub 2.000.056. Due to an unrestricted upload feature and a path traversal vulnerability, it is possible to upload a file on a filesystem with root privileges: this will lead to rem…
- CVE-2018-6022MEDIUMCVSS 6.5EG 6.52018-01-23
Directory traversal vulnerability in application/admin/controller/Main.php in NoneCms through 1.3.0 allows remote authenticated users to delete arbitrary files by leveraging back-office access to provide a ..\ in the param.path parameter.
- CVE-2018-6184HIGHCVSS 7.5EG 7.52018-01-24
ZEIT Next.js 4 before 4.2.3 has Directory Traversal under the /_next request namespace.
- CVE-2018-6356MEDIUMCVSS 6.5EG 6.52018-02-20
Jenkins before 2.107 and Jenkins LTS before 2.89.4 did not properly prevent specifying relative paths that escape a base directory for URLs accessing plugin resource files. This allowed users with Overall/Read permission to download files …
- CVE-2018-6397HIGHCVSS 7.5EG 7.52018-01-30
Directory Traversal exists in the Picture Calendar 3.1.4 component for Joomla! via the list.php folder parameter.
- CVE-2018-6409MEDIUMCVSS 5.3EG 5.32018-05-26
An issue was discovered in Appnitro MachForm before 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve on the corresponding ap_form table leads to a path traversal v…
- CVE-2018-6500HIGHCVSS 7.5EG 7.52018-09-20
A potential Directory Traversal Security vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be remotely exploited to allow Directory Traversal.
- CVE-2018-6660MEDIUMCVSS 6.2EG 4.92018-04-02
Directory Traversal vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.2, 5.3.1, 5.3.0 and 5.9.0 allows administrators to use Windows alternate data streams, which could be used to bypass the file extensions, via not properly validatin…
- CVE-2018-6677CRITICALCVSS 9.1EG 9.12018-07-23
Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to gain elevated privileges via unspecified vectors.
- CVE-2018-6810HIGHCVSS 7.5EG 7.52018-03-06
Directory traversal vulnerability in NetScaler ADC 10.5, 11.0, 11.1, and 12.0, and NetScaler Gateway 10.5, 11.0, 11.1, and 12.0 allows remote attackers to traverse the directory on the target system via a crafted request.
- CVE-2018-6830HIGHCVSS 7.5EG 7.52018-07-09
Directory traversal vulnerability in Foscam Cameras C1 Lite V3, and C1 V3 with firmware 2.82.2.33 and earlier, FI9800P V3, FI9803P V4, FI9851P V3, and FI9853EP V2 2.84.2.33 and earlier, FI9816P V3, FI9821EP V2, FI9821P V3, FI9826P V3, and …
- CVE-2018-6885CRITICALCVSS 9.8EG 9.82019-05-14
An issue was discovered in MicroStrategy Web Services (the Microsoft Office plugin) before 10.4 Hotfix 7, and before 10.11. The vulnerability is unauthenticated and leads to access to the asset files with the MicroStrategy user privileges.…
- CVE-2018-6914HIGHCVSS 7.5EG 7.52018-04-03
Directory traversal vulnerability in the Dir.mktmpdir method in the tmpdir library in Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1 might allow attackers to create arbitrary directories …
- CVE-2018-7092HIGHCVSS 7.5EG 7.52018-08-06
A potential security vulnerability has been identified in HPE Intelligent Management Center Platform (IMC Plat) 7.3 E0506P09. The vulnerability could be remotely exploited to allow for remote directory traversal leading to arbitrary file d…
- CVE-2018-7098HIGHCVSS 8.4EG 8.42018-08-14
A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110(MU7). The vulnerability may be locally exploited to allow directory traversal.
- CVE-2018-7102HIGHCVSS 7.5EG 7.52018-09-27
A security vulnerability in HPE Intelligent Management Center (iMC) PLAT E0506P09, createFabricAutoCfgFile could be remotely exploited via directory traversal to allow remote arbitrary file modification.
- CVE-2018-7171HIGHCVSS 7.5EG 7.52018-03-30
Directory traversal vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to share the contents of arbitrary directories via a .. (dot dot) in the contentbase parameter to rpc/set_all.
- CVE-2018-7172MEDIUMCVSS 4.9EG 4.92018-02-27
In index.php in WonderCMS before 2.4.1, remote attackers can delete arbitrary files via directory traversal.
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →