CWE-22— Path Traversal
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.— MITRE CWE catalog
8,742 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 58 of 175
- CVE-2019-5927HIGHCVSS 7.5EG 7.52019-03-27
Directory traversal vulnerability in 'an' App for iOS Version 3.2.0 and earlier allows remote attackers to read arbitrary files via unspecified vectors.
- CVE-2019-5936MEDIUMCVSS 5.4EG 5.42019-05-17
Directory traversal vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated attackers to obtain files without access privileges via the application 'Work Flow'.
- CVE-2019-5956MEDIUMCVSS 6.5EG 6.52019-09-12
Directory traversal vulnerability in WonderCMS 2.6.0 and earlier allows remote attackers to delete arbitrary files via unspecified vectors.
- CVE-2019-6022MEDIUMCVSS 6.5EG 6.52019-12-26
Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.3 allows remote authenticated attackers to alter arbitrary files via the 'Customapp' function.
- CVE-2019-6111MEDIUMCVSS 5.9EG 5.92019-01-31
An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object na…
- CVE-2019-6113HIGHCVSS 7.5EG 7.52019-08-30
Directory traversal vulnerability on ONKYO TX-NR686 1030-5000-1040-0010 A/V Receiver devices allows remote attackers to read arbitrary files via a .. (dot dot) and %2f to the default URI.
- CVE-2019-6240HIGHCVSS 7.5EG 7.52019-03-25
An issue was discovered in GitLab Community and Enterprise Edition before 11.4. It allows Directory Traversal.
- CVE-2019-6273MEDIUMCVSS 6.5EG 6.52019-03-21
download_file in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote attackers to download arbitrary files.
- CVE-2019-6274HIGHCVSS 8.8EG 8.82019-03-21
Directory traversal vulnerability in storage_cgi in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote attackers to have unspecified impact via directory traversal sequences.
- CVE-2019-6500HIGHCVSS 7.5EG 7.52019-01-21
In Axway File Transfer Direct 2.7.1, an unauthenticated Directory Traversal vulnerability can be exploited by issuing a specially crafted HTTP GET request with %2e instead of '.' characters, as demonstrated by an initial /h2hdocumentation/…
- CVE-2019-6714CRITICALCVSS 9.8EG 9.82019-03-21
An issue was discovered in BlogEngine.NET through 3.3.6.0. A path traversal and Local File Inclusion vulnerability in PostList.ascx.cs can cause unauthenticated users to load a PostView.ascx component from a potentially untrusted location …
- CVE-2019-6726MEDIUMCVSS 6.5EG 6.52019-07-29
The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php mishandle ../ in an HTTP Referer header.
- CVE-2019-6754HIGHCVSS 7.8EG 7.82019-06-03
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.3.10826. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a…
- CVE-2019-6783HIGHCVSS 8.8EG 8.82019-09-09
An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. GitLab Pages contains a directory traversal vulnerability that could lead to remote command execution.
- CVE-2019-7007HIGHCVSS 7.5EG 7.52020-02-28
A directory traversal vulnerability has been found in the Avaya Equinox Management(iView)versions R9.1.9.0 and earlier. Successful exploitation could potentially allow an unauthenticated attacker to access files that are outside the restri…
- CVE-2019-7105CRITICALCVSS 9.8EG 9.82019-05-23
Adobe XD versions 16.0 and earlier have a path traversal vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2019-7106CRITICALCVSS 9.8EG 9.82019-05-23
Adobe XD versions 16.0 and earlier have a path traversal vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2019-7160CRITICALCVSS 9.8EG 9.82019-01-29
idreamsoft iCMS 7.0.13 allows admincp.php?app=files ../ Directory Traversal via the udir parameter to files.admincp.php, resulting in execution of arbitrary PHP code from a ZIP file via the admincp.php?app=apps zipfile parameter to apps.ad…
- CVE-2019-7194CRITICALCVSS 9.8EG 9.8⚠ KEV2019-12-05
This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend updating Photo Station to their latest versions.
- CVE-2019-7195CRITICALCVSS 9.8EG 9.8⚠ KEV2019-12-05
This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend updating Photo Station to their latest versions.
- CVE-2019-7213MEDIUMCVSS 6.5EG 6.52019-04-24
SmarterTools SmarterMail 16.x before build 6985 allows directory traversal. An authenticated user could delete arbitrary files or could create files in new folders in arbitrary locations on the mail server. This could lead to command execu…
- CVE-2019-7227HIGHCVSS 7.3EG 7.32019-06-27
In the ABB IDAL FTP server, an authenticated attacker can traverse to arbitrary directories on the hard disk with "CWD ../" and then use the FTP server functionality to download and upload files. An unauthenticated attacker can take advant…
- CVE-2019-7234CRITICALCVSS 9.1EG 9.12019-01-30
An issue was discovered in idreamsoft iCMS 7.0.13. admincp.php?app=apps&do=save allows directory traversal via _app=/../ to begin the process of creating a ZIP archive file with the complete contents of any directory because of an apps.adm…
- CVE-2019-7235HIGHCVSS 7.5EG 7.52019-01-30
An issue was discovered in idreamsoft iCMS 7.0.13. admincp.php?app=apps&do=save allows directory traversal via _app=/../ to designate an arbitrary directory because of an apps.admincp.php error. This directory can then be deleted via an ad…
- CVE-2019-7236HIGHCVSS 7.5EG 7.52019-01-30
An issue was discovered in idreamsoft iCMS 7.0.13. editor/editor.admincp.php allows admincp.php?app=editor&do=fileManager dir=../ Directory Traversal.
- CVE-2019-7237HIGHCVSS 7.5EG 7.52019-01-30
An issue was discovered in idreamsoft iCMS 7.0.13 on Windows. editor/editor.admincp.php allows admincp.php?app=files&do=browse ..\ Directory Traversal.
- CVE-2019-7253CRITICALCVSS 9.8EG 9.82019-07-02
Linear eMerge E3-Series devices allow Directory Traversal.
- CVE-2019-7254HIGHCVSS 7.5EG 9.02019-07-02
Linear eMerge E3-Series devices allow File Inclusion.
- CVE-2019-7267CRITICALCVSS 9.8EG 9.82019-07-02
Linear eMerge 50P/5000P devices allow Cookie Path Traversal.
- CVE-2019-7289MEDIUMCVSS 5.5EG 5.52019-12-18
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in Shortcuts 2.1.3 for iOS. A local user may be able to view senstive user information.
- CVE-2019-7315HIGHCVSS 7.5EG 7.52019-06-17
Genie Access WIP3BVAF WISH IP 3MP IR Auto Focus Bullet Camera devices through 3.x are vulnerable to directory traversal via the web interface, as demonstrated by reading /etc/shadow. NOTE: this product is discontinued, and its final firmwa…
- CVE-2019-7387MEDIUMCVSS 6.5EG 6.52019-02-04
A local file inclusion vulnerability exists in the web interface of Systrome Cumilon ISG-600C, ISG-600H, and ISG-800W 1.1-R2.1_TRUNK-20180914.bin devices. When the export function is called from system/maintenance/export.php, it accepts th…
- CVE-2019-7403MEDIUMCVSS 4.9EG 4.92019-02-05
An issue was discovered in PHPMyWind 5.5. It allows remote attackers to delete arbitrary folders via an admin/database_backup.php?action=import&dopost=deldir&tbname=../ URI.
- CVE-2019-7483HIGHCVSS 7.5EG 9.0⚠ KEV2019-12-19
In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server.
- CVE-2019-7618MEDIUMCVSS 6.5EG 6.52019-10-01
A local file disclosure flaw was found in Elastic Code versions 7.3.0, 7.3.1, and 7.3.2. If a malicious code repository is imported into Code it is possible to read arbitrary files from the local filesystem of the Kibana instance running C…
- CVE-2019-7678CRITICALCVSS 9.8EG 9.82019-02-09
A directory traversal vulnerability was discovered in Enphase Envoy R3.*.* via images/, include/, include/js, or include/css on TCP port 8888.
- CVE-2019-7751HIGHCVSS 7.5EG 7.52019-12-31
A directory traversal and local file inclusion vulnerability in FPProducerInternetServer.exe in Ricoh MarcomCentral, formerly PTI Marketing, FusionPro VDP before 10.0 allows a remote attacker to list or enumerate sensitive contents of file…
- CVE-2019-7859HIGHCVSS 7.5EG 7.52019-08-02
A path traversal vulnerability in the WYSIWYG editor for Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 could result in unauthorized access to uploaded images due to insufficient access control.
- CVE-2019-8074CRITICALCVSS 9.8EG 9.82019-09-27
ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Path Traversal vulnerability. Successful exploitation could lead to Access Control Bypass in the context of the current user.
- CVE-2019-8238HIGHCVSS 7.5EG 7.52019-10-23
Adobe Acrobat and Reader versions 2019.010.20100 and earlier; 2019.010.20099 and earlier versions; 2017.011.30140 and earlier version; 2017.011.30138 and earlier version; 2015.006.30495 and earlier versions; 2015.006.30493 and earlier vers…
- CVE-2019-8291HIGHCVSS 7.5EG 7.52019-10-01
Online Store System v1.0 delete_file.php doesn't check to see if a user has administrative rights nor does it check for path traversal.
- CVE-2019-8320HIGHCVSS 7.4EG 7.42019-06-06
A Directory Traversal issue was discovered in RubyGems 2.7.6 and later through 3.0.2. Before making new directories or touching files (which now include path-checking code for symlinks), it would delete the target destination. If that dest…
- CVE-2019-8358HIGHCVSS 8.1EG 8.12019-02-16
In Hiawatha before 10.8.4, a remote attacker is able to do directory traversal if AllowDotFiles is enabled.
- CVE-2019-8385CRITICALCVSS 9.8EG 9.82019-06-05
An issue was discovered in Thomson Reuters Desktop Extensions 1.9.0.358. An unauthenticated directory traversal and local file inclusion vulnerability in the ThomsonReuters.Desktop.Service.exe and ThomsonReuters.Desktop.exe allows a remote…
- CVE-2019-8389HIGHCVSS 8.1EG 8.12019-02-17
A file-read vulnerability was identified in the Wi-Fi transfer feature of Musicloud 1.6. By default, the application runs a transfer service on port 8080, accessible by everyone on the same Wi-Fi network. An attacker can send the POST para…
- CVE-2019-8395CRITICALCVSS 9.8EG 9.82019-02-17
An Insecure Direct Object Reference (IDOR) vulnerability exists in Zoho ManageEngine ServiceDesk Plus (SDP) before 10.0 build 10007 via an attachment to a request.
- CVE-2019-8407MEDIUMCVSS 6.5EG 6.52019-02-17
HongCMS 3.0.0 allows arbitrary file read and write operations via a ../ in the filename parameter to the admin/index.php/language/edit URI.
- CVE-2019-8411HIGHCVSS 7.5EG 7.52019-02-17
admin/dl_data.php in zzcms 2018 (2018-10-19) allows remote attackers to delete arbitrary files via action=del&filename=../ directory traversal.
- CVE-2019-8412HIGHCVSS 8.8EG 8.82019-02-17
FeiFeiCms 4.0.181010 on Windows allows remote attackers to read or delete arbitrary files via index.php?s=Admin-Data-Down-id-..\ or index.php?s=Admin-Data-Del-id-..\ directory traversal.
- CVE-2019-8903HIGHCVSS 7.5EG 7.52019-02-18
index.js in Total.js Platform before 3.2.3 allows path traversal.
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →