CWE-22— Path Traversal
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.— MITRE CWE catalog
8,742 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 57 of 175
- CVE-2019-3397CRITICALCVSS 9.1EG 9.12019-06-03
Atlassian Bitbucket Data Center licensed instances starting with version 5.13.0 before 5.13.6 (the fixed version for 5.13.x), from 5.14.0 before 5.14.4 (fixed version for 5.14.x), from 5.15.0 before 5.15.3 (fixed version for 5.15.x), from …
- CVE-2019-3398HIGHCVSS 8.8EG 9.0⚠ KEV2019-04-18
Confluence Server and Data Center had a path traversal vulnerability in the downloadallattachments resource. A remote attacker who has permission to add attachments to pages and / or blogs or to create a new space or a personal space or wh…
- CVE-2019-3415MEDIUMCVSS 5.7EG 5.72019-07-11
ZTE MW NR8000V2.4.4.03 and NR8000V2.4.4.04 are impacted by path traversal vulnerability. Due to path traversal,users can download any files.
- CVE-2019-3423MEDIUMCVSS 5.3EG 5.32019-11-18
permission and access control vulnerability, which exists in V2.1.14 and below versions of C520V21 smart camera devices. An attacker can construct a URL for directory traversal and access to other unauthorized files or resources.
- CVE-2019-3474MEDIUMCVSS 6.5EG 6.52019-02-20
A path traversal vulnerability in the web application component of Micro Focus Filr 3.x allows a remote attacker authenticated as a low privilege user to download arbitrary files from the Filr server. This vulnerability affects all version…
- CVE-2019-3482MEDIUMCVSS 6.5EG 6.52019-03-25
Mitigates a directory traversal issue in ArcSight Logger versions prior to 6.7.
- CVE-2019-3556HIGHCVSS 8.1EG 8.12021-10-26
HHVM supports the use of an "admin" server which accepts administrative requests over HTTP. One of those request handlers, dump-pcre-cache, can be used to output cached regular expressions from the current execution context into a file. Th…
- CVE-2019-3580HIGHCVSS 7.5EG 7.52019-01-03
OpenRefine through 3.1 allows arbitrary file write because Directory Traversal can occur during the import of a crafted project file.
- CVE-2019-3632HIGHCVSS 8.8EG 8.82019-06-27
Directory Traversal vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows authenticated user to gain elevated privileges via specially crafted input.
- CVE-2019-3662MEDIUMCVSS 6.5EG 6.52019-11-14
Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.
- CVE-2019-3696HIGHCVSS 8.4EG 8.42020-03-03
A Improper Limitation of a Pathname to a Restricted Directory vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterpri…
- CVE-2019-3720MEDIUMCVSS 4.9EG 4.92019-04-25
Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain a Directory Traversal Vulnerability. A remote authenticated malicious user with admin privileges could potentially exploit this vulnerability to gain unauthor…
- CVE-2019-3737HIGHCVSS 7.5EG 7.52019-06-19
Dell EMC Avamar ADMe Web Interface 1.0.50 and 1.0.51 are affected by an LFI vulnerability which may allow a malicious user to download arbitrary files from the affected system by sending a specially crafted request to the Web Interface app…
- CVE-2019-3744HIGHCVSS 7.8EG 7.82019-08-09
Dell/Alienware Digital Delivery versions prior to 4.0.41 contain a privilege escalation vulnerability. A local non-privileged malicious user could exploit a Universal Windows Platform application by manipulating the install software packag…
- CVE-2019-3799MEDIUMCVSS 6.5EG 9.02019-05-06
Spring Cloud Config, versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-…
- CVE-2019-3816HIGHCVSS 7.5EG 7.52019-03-14
Openwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openwsmand daemon was set to root directory. A remote, unauthenticated attacker can exploit this vulnerability by s…
- CVE-2019-3828MEDIUMCVSS 4.2EG 4.22019-03-27
Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absol…
- CVE-2019-3880MEDIUMCVSS 5.4EG 5.42019-04-09
A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead …
- CVE-2019-3902MEDIUMCVSS 5.1EG 5.12019-04-22
A flaw was found in Mercurial before 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside a repository.
- CVE-2019-3943HIGHCVSS 8.1EG 8.12019-04-10
MikroTik RouterOS versions Stable 6.43.12 and below, Long-term 6.42.12 and below, and Testing 6.44beta75 and below are vulnerable to an authenticated, remote directory traversal via the HTTP or Winbox interfaces. An authenticated, remote a…
- CVE-2019-3967MEDIUMCVSS 6.5EG 6.52019-08-20
In OpenEMR 5.0.1 and earlier, the patient file download interface contains a directory traversal flaw that allows authenticated attackers to download arbitrary files from the host system.
- CVE-2019-3976HIGHCVSS 8.8EG 8.82019-10-29
RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below are vulnerable to an arbitrary directory creation vulnerability via the upgrade package's name field. If an authenticated user installs a malicious package then a directory could…
- CVE-2019-4178MEDIUMCVSS 6.4EG 9.12019-04-15
IBM Cognos Analytics 11 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to write or view arbitrary files on the system. IBM X-Force ID: 158919.
- CVE-2019-4252HIGHCVSS 7.5EG 7.52019-06-27
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view a…
- CVE-2019-4268MEDIUMCVSS 5.3EG 5.32019-09-17
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL containing "dot dot" sequences (/../) to view arbitrary files on th…
- CVE-2019-4384MEDIUMCVSS 4.3EG 4.32019-06-19
IBM Campaign 9.1.2 and 10.1 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Forc…
- CVE-2019-4400MEDIUMCVSS 4.3EG 4.32019-10-25
IBM Cloud Orchestrator 2.4 through 2.4.0.5 and 2.5 through 2.5.0.9 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view ar…
- CVE-2019-4423MEDIUMCVSS 5.3EG 5.32019-09-30
IBM Sterling File Gateway 2.2.0.0 through 6.0.1.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on …
- CVE-2019-4430HIGHCVSS 7.5EG 7.52019-07-17
IBM Maximo Asset Management 7.6 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-…
- CVE-2019-4442MEDIUMCVSS 4.3EG 4.32019-09-17
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9,0 could allow a remote attacker to traverse directories on the file system. An attacker could send a specially-crafted URL request to view arbitrary files on the system but not content.…
- CVE-2019-4460HIGHCVSS 7.5EG 7.52019-08-20
IBM API Connect 5.0.0.0 through 5.0.8.6 developer portal could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary fi…
- CVE-2019-4582MEDIUMCVSS 4.3EG 4.32020-08-13
IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the sy…
- CVE-2019-4674MEDIUMCVSS 4.9EG 4.92020-02-04
IBM Security Identity Manager 7.0.1 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IB…
- CVE-2019-5221MEDIUMCVSS 6.5EG 6.52019-07-10
There is a path traversal vulnerability on Huawei Share. The software does not properly validate the path, an attacker could crafted a file path when transporting file through Huawei Share, successful exploit could allow the attacker to tr…
- CVE-2019-5251MEDIUMCVSS 5.5EG 5.52019-12-13
There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installing, backing up and restoring a malicious…
- CVE-2019-5356CRITICALCVSS 9.8EG 9.82019-06-05
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
- CVE-2019-5416HIGHCVSS 7.5EG 7.52019-03-21
A path traversal vulnerability in localhost-now npm package version 1.0.2 allows the attackers to read content of arbitrary files on the remote server.
- CVE-2019-5417HIGHCVSS 7.5EG 7.52019-03-21
A path traversal vulnerability in serve npm package version 7.0.1 allows the attackers to read content of arbitrary files on the remote server.
- CVE-2019-5418HIGHCVSS 7.5EG 9.0⚠ KEV2019-03-27
There is a File Content Disclosure vulnerability in Action View <5.2.2.1, <5.1.6.2, <5.0.7.2, <4.2.11.1 and v3 where specially crafted accept headers can cause contents of arbitrary files on the target system's filesystem to be exposed.
- CVE-2019-5423HIGHCVSS 7.5EG 7.52019-04-03
Path traversal vulnerability in http-live-simulator npm package version 1.0.5 allows arbitrary path to be accessed on the file system by a remote attacker.
- CVE-2019-5438MEDIUMCVSS 5.3EG 5.32019-05-10
Path traversal using symlink in npm harp module versions <= 0.29.0.
- CVE-2019-5444MEDIUMCVSS 5.3EG 5.32019-07-10
Path traversal vulnerability in version up to v1.1.3 in serve-here.js npm module allows attackers to list any file in arbitrary folder.
- CVE-2019-5447MEDIUMCVSS 5.3EG 5.32019-07-15
A path traversal vulnerability in <= v0.2.6 of http-file-server npm module allows attackers to list files in arbitrary folders.
- CVE-2019-5480MEDIUMCVSS 5.3EG 5.32019-09-03
A path traversal vulnerability in <= v0.9.7 of statichttpserver npm module allows attackers to list files in arbitrary folders.
- CVE-2019-5484HIGHCVSS 7.5EG 7.52019-09-13
Bower before 1.8.8 has a path traversal vulnerability permitting file write in arbitrary locations via install command, which allows attackers to write arbitrary files when a malicious package is extracted.
- CVE-2019-5624HIGHCVSS 7.3EG 7.32019-04-30
Rapid7 Metasploit Framework suffers from an instance of CWE-22, Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in the Zip import function of Metasploit. Exploiting this vulnerability can allow an attacker to…
- CVE-2019-5887HIGHCVSS 7.5EG 7.52019-01-10
An issue was discovered in ShopXO 1.2.0. In the UnlinkDir method of the FileUtil.php file, the input parameters are not checked, resulting in input mishandling by the rmdir method. Attackers can delete arbitrary files by using "../" direct…
- CVE-2019-5889HIGHCVSS 7.5EG 7.52019-04-01
An log-management directory traversal issue was discovered in OverIT Geocall 6.3 before build 2:346977.
- CVE-2019-5910HIGHCVSS 7.5EG 7.52019-02-13
Directory traversal vulnerability in HOUSE GATE App for iOS 1.7.8 and earlier allows remote attackers to read arbitrary files via unspecified vectors.
- CVE-2019-5923HIGHCVSS 7.5EG 7.52019-03-12
Directory traversal vulnerability in iChain Insurance Wallet App for iOS Version 1.3.0 and earlier allows remote attackers to read arbitrary files via unspecified vectors.
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →