CWE-22— Path Traversal
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.— MITRE CWE catalog
8,756 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 67 of 176
- CVE-2020-37034HIGHCVSS 7.5EG 7.52026-01-30
HelloWeb 2.0 contains an arbitrary file download vulnerability that allows remote attackers to download system files by manipulating filepath and filename parameters. Attackers can send crafted GET requests to download.asp with directory t…
- CVE-2020-37041HIGHCVSS 7.5EG 7.52026-01-30
OpenCTI 3.3.1 is vulnerable to a directory traversal attack via the static/css endpoint. An unauthenticated attacker can read arbitrary files from the filesystem by sending crafted GET requests with path traversal sequences (e.g., '../') i…
- CVE-2020-37077MEDIUMCVSS 6.5EG 6.52026-02-03
Booked Scheduler 2.7.7 contains a directory traversal vulnerability in the manage_email_templates.php script that allows authenticated administrators to access unauthorized files. Attackers can exploit the vulnerable 'tn' parameter to read…
- CVE-2020-37086MEDIUMCVSS 6.2EG 6.22026-02-03
Easy Transfer 1.7 iOS mobile application contains a directory traversal vulnerability that allows remote attackers to access unauthorized file system paths without authentication. Attackers can exploit the vulnerability by manipulating pat…
- CVE-2020-37088HIGHCVSS 7.5EG 7.52026-02-03
School ERP Pro 1.0 contains a file disclosure vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the 'document' parameter in download.php. Attackers can access sensitive configuration files by suppl…
- CVE-2020-3717MEDIUMCVSS 5.3EG 5.32020-01-29
Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a path traversal vulnerability. Successful exploitation could lead to sensitive information disclosure.
- CVE-2020-37214HIGHCVSS 7.5EG 7.52026-02-11
Voyager 1.3.0 contains a directory traversal vulnerability that allows attackers to access sensitive system files by manipulating the asset path parameter. Attackers can exploit the path parameter in /admin/voyager-assets to read arbitrary…
- CVE-2020-37219HIGHCVSS 7.5EG 7.52026-05-13
Joomla com_fabrik 3.9.11 contains a directory traversal vulnerability that allows unauthenticated attackers to list arbitrary files by manipulating the folder parameter. Attackers can send GET requests to the onAjax_files method with path …
- CVE-2020-4000HIGHCVSS 8.8EG 8.82020-11-24
The SD-WAN Orchestrator 3.3.2 prior to 3.3.2 P3, 3.4.x prior to 3.4.4, and 4.0.x prior to 4.0.1 allows for executing files through directory traversal. An authenticated SD-WAN Orchestrator user is able to traversal directories which may le…
- CVE-2020-4039HIGHCVSS 8.6EG 8.62021-04-30
SUSI.AI is an intelligent Open Source personal assistant. SUSI.AI Server before version d27ed0f has a directory traversal vulnerability due to insufficient input validation. Any admin config and file readable by the app can be retrieved by…
- CVE-2020-4053LOWCVSS 3.7EG 3.72020-06-16
In Helm greater than or equal to 3.0.0 and less than 3.2.4, a path traversal attack is possible when installing Helm plugins from a tar archive over HTTP. It is possible for a malicious plugin author to inject a relative path into a plugin…
- CVE-2020-4209MEDIUMCVSS 5.4EG 5.42020-05-04
IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to create arbitrary files on …
- CVE-2020-4240MEDIUMCVSS 6.5EG 6.52020-03-31
IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to overwrite or create arbitrary files on the system. IBM X-Force I…
- CVE-2020-4272HIGHCVSS 8.8EG 8.82020-04-15
IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow a remote attacker to include arbitrary files. A remote attacker could send a specially-crafted request specify a malicious file from a remote system, which could allow the attacker to execute a…
- CVE-2020-4430MEDIUMCVSS 4.3EG 9.0⚠ KEV2020-05-07
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to download arbitrary files from the system. IBM…
- CVE-2020-4711MEDIUMCVSS 6.5EG 6.52020-09-15
IBM Spectrum Protect Plus 10.1.0 through 10.1.6 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on th…
- CVE-2020-4776HIGHCVSS 7.5EG 7.52020-10-12
A path traversal vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, which could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted file path in URL request …
- CVE-2020-4782MEDIUMCVSS 6.5EG 6.52020-10-28
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary fil…
- CVE-2020-4789MEDIUMCVSS 6.5EG 6.52021-01-27
IBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" …
- CVE-2020-4934MEDIUMCVSS 4.3EG 4.32021-02-02
IBM Content Navigator 3.0.CD could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-For…
- CVE-2020-4993MEDIUMCVSS 4.9EG 4.92021-05-05
IBM QRadar SIEM 7.3 and 7.4 when decompressing or verifying signature of zip files processes data in a way that may be vulnerable to path traversal attacks. IBM X-Force ID: 192905.
- CVE-2020-5001MEDIUMCVSS 4.3EG 7.52023-03-01
IBM Financial Transaction Manager 3.2.0 through 3.2.7 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary file…
- CVE-2020-5016MEDIUMCVSS 6.5EG 6.52021-03-10
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. When application security is disabled and JAX-RPC applications are present, an attacker could send a specially-cra…
- CVE-2020-5187HIGHCVSS 8.8EG 8.82020-02-24
DNN (formerly DotNetNuke) through 9.4.4 allows Path Traversal (issue 2 of 2).
- CVE-2020-5221MEDIUMCVSS 6.5EG 6.52020-01-22
In uftpd before 2.11, it is possible for an unauthenticated user to perform a directory traversal attack using multiple different FTP commands and read and write to arbitrary locations on the filesystem due to the lack of a well-written ch…
- CVE-2020-5237HIGHCVSS 8.8EG 8.82020-02-05
Multiple relative path traversal vulnerabilities in the oneup/uploader-bundle before 1.9.3 and 2.1.5 allow remote attackers to upload, copy, and modify files on the filesystem (potentially leading to arbitrary code execution) via the (1) f…
- CVE-2020-5280HIGHCVSS 7.6EG 7.62020-03-25
http4s before versions 0.18.26, 0.20.20, and 0.21.2 has a local file inclusion vulnerability. This vulnerability applies to all users of org.http4s.server.staticcontent.FileService, org.http4s.server.staticcontent.ResourceService and org.h…
- CVE-2020-5284MEDIUMCVSS 4.4EG 4.42020-03-30
Next.js versions before 9.3.2 have a directory traversal vulnerability. Attackers could craft special requests to access files in the dist directory (.next). This does not affect files outside of the dist directory (.next). In general, the…
- CVE-2020-5366HIGHCVSS 7.1EG 7.12020-07-09
Dell EMC iDRAC9 versions prior to 4.20.20.20 contain a Path Traversal Vulnerability. A remote authenticated malicious user with low privileges could potentially exploit this vulnerability by manipulating input parameters to gain unauthoriz…
- CVE-2020-5370HIGHCVSS 7.9EG 7.92021-07-22
Dell EMC OpenManage Enterprise (OME) versions prior to 3.4 contain an arbitrary file overwrite vulnerability. A remote authenticated malicious user with high privileges could potentially exploit this vulnerability to overwrite arbitrary fi…
- CVE-2020-5377CRITICALCVSS 9.1EG 9.12020-07-28
Dell EMC OpenManage Server Administrator (OMSA) versions 9.4 and prior contain multiple path traversal vulnerabilities. An unauthenticated remote attacker could potentially exploit these vulnerabilities by sending a crafted Web API request…
- CVE-2020-5405MEDIUMCVSS 6.5EG 9.02020-03-05
Spring Cloud Config, versions 2.2.x prior to 2.2.2, versions 2.1.x prior to 2.1.7, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or…
- CVE-2020-5410HIGHCVSS 7.5EG 9.0⚠ KEV2020-06-02
Spring Cloud Config, versions 2.2.x prior to 2.2.3, versions 2.1.x prior to 2.1.9, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or…
- CVE-2020-5512MEDIUMCVSS 6.8EG 6.82020-01-06
Gila CMS 1.11.8 allows /admin/media?path=../ Path Traversal.
- CVE-2020-5513MEDIUMCVSS 6.8EG 6.82020-01-06
Gila CMS 1.11.8 allows /cm/delete?t=../ Directory Traversal.
- CVE-2020-5554CRITICALCVSS 9.1EG 9.12020-03-25
Directory traversal vulnerability in Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote attackers to read and write arbitrary files via unspecified vectors.
- CVE-2020-5581MEDIUMCVSS 6.5EG 6.52020-06-30
Path traversal vulnerability in Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to obtain unintended information via unspecified vectors.
- CVE-2020-5588MEDIUMCVSS 4.9EG 4.92020-06-30
Path traversal vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to obtain unintended information via unspecified vectors.
- CVE-2020-5590HIGHCVSS 8.1EG 8.12020-06-19
Directory traversal vulnerability in EC-CUBE 3.0.0 to 3.0.18 and 4.0.0 to 4.0.3 allows remote authenticated attackers to delete arbitrary files and/or directories on the server via unspecified vectors.
- CVE-2020-5605MEDIUMCVSS 4.3EG 4.32020-09-18
Directory traversal vulnerability in WHR-G54S firmware 1.43 and earlier allows an attacker to access sensitive information such as setting values via unspecified vectors.
- CVE-2020-5609CRITICALCVSS 9.8EG 9.82020-08-05
Directory traversal vulnerability in CAMS for HIS CENTUM CS 3000 (includes CENTUM CS 3000 Small) R3.08.10 to R3.09.50, CENTUM VP (includes CENTUM VP Small, Basic) R4.01.00 to R6.07.00, B/M9000CS R5.04.01 to R5.05.01, and B/M9000 VP R6.01.0…
- CVE-2020-5614MEDIUMCVSS 5.3EG 5.32020-07-29
Directory traversal vulnerability in KonaWiki 3.1.0 and earlier allows remote attackers to read arbitrary files via unspecified vectors.
- CVE-2020-5639CRITICALCVSS 9.8EG 9.82020-12-14
Directory traversal vulnerability in FileZen versions from V3.0.0 to V4.2.2 allows remote attackers to upload an arbitrary file in a specific directory via unspecified vectors. As a result, an arbitrary OS command may be executed.
- CVE-2020-5683HIGHCVSS 7.5EG 7.52020-12-16
Directory traversal vulnerability in GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12 (v4.1 Series), and GROWI v3 series and earlier GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12…
- CVE-2020-5720MEDIUMCVSS 5.9EG 5.92020-02-06
MikroTik WinBox before 3.21 is vulnerable to a path traversal vulnerability that allows creation of arbitrary files wherevere WinBox has write permissions. WinBox is vulnerable to this attack if it connects to a malicious endpoint or if an…
- CVE-2020-5744MEDIUMCVSS 4.9EG 4.92020-05-07
Relative Path Traversal in TCExam 14.2.2 allows a remote, authenticated attacker to read the contents of arbitrary files on disk.
- CVE-2020-5752HIGHCVSS 7.8EG 7.82020-05-21
Relative path traversal in Druva inSync Windows Client 6.6.3 allows a local, unauthenticated attacker to execute arbitrary operating system commands with SYSTEM privileges.
- CVE-2020-5764HIGHCVSS 8.8EG 8.82020-07-08
MX Player Android App versions prior to v1.24.5, are vulnerable to a directory traversal vulnerability when user is using the MX Transfer feature in "Receive" mode. An attacker can exploit this by connecting to the MX Transfer session as a…
- CVE-2020-5787MEDIUMCVSS 6.5EG 6.52020-10-01
Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to delete arbitrary files on disk via the admin/services/packages/remove action.
- CVE-2020-5788MEDIUMCVSS 6.5EG 6.52020-10-01
Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to delete arbitrary files on disk via the admin/system/admin/certificates/delete action.
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →