CWE-22— Path Traversal
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.— MITRE CWE catalog
8,770 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 86 of 176
- CVE-2022-26315MEDIUMCVSS 5.3EG 5.32022-02-28
qrcp through 0.8.4, in receive mode, allows ../ Directory Traversal via the file name specified by the uploader.
- CVE-2022-26352CRITICALCVSS 9.8EG 9.8⚠ KEV2022-07-17
An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can craft a multipart form request to post a file whose filename is not initially sanitized. This allows directory traversal, in which the file is sa…
- CVE-2022-26484MEDIUMCVSS 4.9EG 4.92022-03-04
An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated ad…
- CVE-2022-26500HIGHCVSS 8.8EG 9.0⚠ KEV2022-03-17
Improper limitation of path names in Veeam Backup & Replication 9.5U3, 9.5U4,10.x, and 11.x allows remote authenticated users access to internal API functions that allows attackers to upload and execute arbitrary code.
- CVE-2022-2653MEDIUMCVSS 6.5EG 6.52022-08-04
With this vulnerability an attacker can read many sensitive files like configuration files, or the /proc/self/environ file, that contains the environment variable used by the web server that includes database credentials. If the web server…
- CVE-2022-26652MEDIUMCVSS 6.5EG 6.52022-03-10
NATS nats-server before 2.7.4 allows Directory Traversal (with write access) via an element in a ZIP archive for JetStream streams. nats-streaming-server before 0.24.3 is also affected.
- CVE-2022-26675HIGHCVSS 7.5EG 7.52022-04-07
aEnrich a+HRD has inadequate filtering for special characters in URLs. An unauthenticated remote attacker can bypass authentication and perform path traversal attacks to access arbitrary files under website root directory.
- CVE-2022-26835MEDIUMCVSS 4.9EG 4.92022-05-05
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all versions of 12.1.x and 11.6.x, directory traversal vulnerabilities exist in undi…
- CVE-2022-26838MEDIUMCVSS 6.5EG 6.52023-08-03
Path traversal vulnerability in Importing Mobile Device Data of Cybozu Remote Service 3.1.2 allows a remote authenticated attacker to cause a denial-of-service (DoS) condition.
- CVE-2022-26884MEDIUMCVSS 6.5EG 6.52022-10-28
Users can read any files by log server, Apache DolphinScheduler users should upgrade to version 2.0.6 or higher.
- CVE-2022-26889HIGHCVSS 8.8EG 9.82022-05-06
In Splunk Enterprise versions before 8.1.2, the uri path to load a relative resource within a web page is vulnerable to path traversal. It allows an attacker to potentially inject arbitrary content into the web page (e.g., HTML Injection, …
- CVE-2022-26960CRITICALCVSS 9.1EG 9.12022-03-21
connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root. This is due to improper handling of a…
- CVE-2022-27043HIGHCVSS 7.5EG 7.52022-04-15
Yearning versions 2.3.1 and 2.3.2 Interstellar GA and 2.3.4 - 2.3.6 Neptune is vulnerable to Directory Traversal.
- CVE-2022-2711HIGHCVSS 7.2EG 7.22022-11-07
The Import any XML or CSV File to WordPress plugin before 3.6.9 is not validating the paths of files contained in uploaded zip archives, allowing highly privileged users, such as admins, to write arbitrary files to any part of the file sys…
- CVE-2022-2712MEDIUMCVSS 6.5EG 6.52023-01-27
In Eclipse GlassFish versions 5.1.0 to 6.2.5, there is a vulnerability in relative path traversal because it does not filter request path starting with './'. Successful exploitation could allow an remote unauthenticated attacker to access …
- CVE-2022-27203MEDIUMCVSS 6.5EG 6.52022-03-15
Jenkins Extended Choice Parameter Plugin 346.vd87693c5a_86c and earlier allows attackers with Item/Configure permission to read values from arbitrary JSON and Java properties files on the Jenkins controller.
- CVE-2022-27208MEDIUMCVSS 6.5EG 6.52022-03-15
Jenkins Kubernetes Continuous Deploy Plugin 2.3.1 and earlier allows users with Credentials/Create permission to read arbitrary files on the Jenkins controller.
- CVE-2022-27229MEDIUMCVSS 6.7EG 6.72023-11-14
Path transversal in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2022-27248MEDIUMCVSS 6.5EG 6.52022-04-03
A directory traversal vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to download arbitrary .dwg files from a remote server by specifying an absolute or relative path when invoking the affected DownloadD…
- CVE-2022-27277CRITICALCVSS 9.1EG 9.12022-04-10
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file deletion vulnerability via the function sub_17C08.
- CVE-2022-27279HIGHCVSS 7.5EG 7.52022-04-10
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file read via the function sub_177E0.
- CVE-2022-27498MEDIUMCVSS 6.5EG 6.52022-12-15
A directory traversal vulnerability exists in the TicketTemplateActions.aspx GetTemplateAttachment functionality of Lansweeper lansweeper 10.1.1.0. A specially-crafted HTTP request can lead to arbitrary file read. An attacker can send an H…
- CVE-2022-27610MEDIUMCVSS 6.5EG 8.12022-07-27
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology DiskStation Manager (DSM) before 6.2.3-25423 allows remote authenticated users to delete arbitrary files via unspe…
- CVE-2022-27611MEDIUMCVSS 5.4EG 8.12022-07-28
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology Audio Station before 6.5.4-3367 allows remote authenticated users to delete arbitrary files via unspecified vector…
- CVE-2022-27615HIGHCVSS 7.7EG 8.12022-07-28
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology DNS Server before 2.2.2-5027 allows remote authenticated users to delete arbitrary files via unspecified vectors.
- CVE-2022-27617MEDIUMCVSS 5.0EG 4.32022-08-03
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology Calendar before 2.3.4-0631 allows remote authenticated users to download arbitrary files via unspecified vectors.
- CVE-2022-27618MEDIUMCVSS 6.8EG 6.52022-08-03
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology Storage Analyzer before 2.1.0-0390 allows remote authenticated users to delete arbitrary files via unspecified vec…
- CVE-2022-27620MEDIUMCVSS 6.8EG 4.92022-08-03
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology SSO Server before 2.2.3-0331 allows remote authenticated users to read arbitrary files via unspecified vectors.
- CVE-2022-27621MEDIUMCVSS 5.5EG 3.82022-08-03
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology USB Copy before 2.2.0-1086 allows remote authenticated users to read or write arbitrary files via unspecified vect…
- CVE-2022-27657LOWCVSS 2.7EG 2.72022-04-12
A highly privileged remote attacker, can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information in SAP Focused Run (Simple Diagnostics Agent 1.0) - version 1.0.
- CVE-2022-27836HIGHCVSS 8.4EG 7.82022-04-11
Improper access control and path traversal vulnerability in Storage Manager and Storage Manager Service prior to SMR Apr-2022 Release 1 allow local attackers to access arbitrary system files without a proper permission. The patch adds prop…
- CVE-2022-27844LOWCVSS 2.7EG 7.52022-04-11
Arbitrary File Read vulnerability in WPvivid Team Migration, Backup, Staging – WPvivid (WordPress plugin) versions <= 0.9.70
- CVE-2022-2788LOWCVSS 3.9EG 7.32022-08-19
Emerson Electric's Proficy Machine Edition Version 9.80 and prior is vulnerable to CWE-29 Path Traversal: '\..\Filename', also known as a ZipSlip attack, through an upload procedure which enables attackers to implant a malicious .BLZ file …
- CVE-2022-27906MEDIUMCVSS 5.9EG 5.92022-03-25
Mendelson OFTP2 before 1.1 b43 is affected by directory traversal. To access the vulnerable code path, the attacker has to know one of the configured Odette IDs of the OFTP2 server. An attacker can upload files to the server outside of the…
- CVE-2022-27925HIGHCVSS 7.2EG 9.0⚠ KEV2022-04-21
Zimbra Collaboration (aka ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP archive and extracts files from it. An authenticated user with administrator rights has the ability to upload arbitrary files to the system, lea…
- CVE-2022-28052HIGHCVSS 8.0EG 8.02022-04-13
Directory Traversal vulnerability in file cn/roothub/store/FileSystemStorageService in function store in Roothub 2.6.0 allows remote attackers with low privlege to arbitrarily upload files via /common/upload API, which could lead to remote…
- CVE-2022-28058HIGHCVSS 8.1EG 8.12022-04-26
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\file_controller.php.
- CVE-2022-28059HIGHCVSS 8.1EG 8.12022-04-26
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\database_controller.php.
- CVE-2022-28127CRITICALCVSS 9.1EG 9.12022-06-30
A data removal vulnerability exists in the web_server /action/remove/ API functionality of Robustel R1510 3.3.0. A specially-crafted network request can lead to arbitrary file deletion. An attacker can send a sequence of requests to trigge…
- CVE-2022-28146MEDIUMCVSS 6.5EG 6.52022-03-29
Jenkins Continuous Integration with Toad Edge Plugin 2.3 and earlier allows attackers with Item/Configure permission to read arbitrary files on the Jenkins controller by specifying an input folder on the Jenkins controller as a parameter t…
- CVE-2022-28148MEDIUMCVSS 6.5EG 6.52022-03-29
The file browser in Jenkins Continuous Integration with Toad Edge Plugin 2.3 and earlier may interpret some paths to files as absolute on Windows, resulting in a path traversal vulnerability allowing attackers with Item/Read permission to …
- CVE-2022-28156MEDIUMCVSS 6.5EG 6.52022-03-29
Jenkins Pipeline: Phoenix AutoTest Plugin 1.3 and earlier allows attackers with Item/Configure permission to copy arbitrary files and directories from the Jenkins controller to the agent workspace.
- CVE-2022-28157MEDIUMCVSS 6.5EG 6.52022-03-29
Jenkins Pipeline: Phoenix AutoTest Plugin 1.3 and earlier allows attackers with Item/Configure permission to upload arbitrary files from the Jenkins controller via FTP to an attacker-specified FTP server.
- CVE-2022-28357CRITICALCVSS 9.8EG 9.82023-09-19
NATS nats-server 2.2.0 through 2.7.4 allows directory traversal because of an unintended path to a management action from a management account.
- CVE-2022-28380HIGHCVSS 7.5EG 7.52022-04-03
The rc-httpd component through 2022-03-31 for 9front (Plan 9 fork) allows ..%2f directory traversal if serve-static is used.
- CVE-2022-28444HIGHCVSS 7.5EG 7.52022-04-21
UCMS v1.6 was discovered to contain an arbitrary file read vulnerability.
- CVE-2022-28451HIGHCVSS 7.5EG 7.52022-05-02
nopCommerce 4.50.1 is vulnerable to Directory Traversal via the backup file in the Maintenance feature.
- CVE-2022-28478MEDIUMCVSS 6.5EG 6.52022-06-06
SeedDMS 6.0.17 and 5.1.24 are vulnerable to Directory Traversal. The "Remove file" functionality inside the "Log files management" menu does not sanitize user input allowing attackers with admin privileges to delete arbitrary files on the …
- CVE-2022-28523HIGHCVSS 8.1EG 8.12022-04-26
HongCMS 3.0.0 allows arbitrary file deletion via the component /admin/index.php/template/ajax?action=delete.
- CVE-2022-28527HIGHCVSS 8.1EG 8.12022-04-26
dhcms v20170919 was discovered to contain an arbitrary folder deletion vulnerability via /admin.php?r=admin/AdminBackup/del.
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →