CWE-22— Path Traversal
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.— MITRE CWE catalog
8,771 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 88 of 176
- CVE-2022-30302MEDIUMCVSS 6.5EG 8.12022-07-19
Multiple relative path traversal vulnerabilities [CWE-23] in FortiDeceptor management interface 1.0.0 through 3.2.x, 3.3.0 through 3.3.2, 4.0.0 through 4.0.1 may allow a remote and authenticated attacker to retrieve and delete arbitrary fi…
- CVE-2022-30321HIGHCVSS 8.6EG 8.62022-05-25
go-getter up to 1.5.11 and 2.0.2 allowed arbitrary host access via go-getter path traversal, symlink processing, and command injection flaws. Fixed in 1.6.1 and 2.1.0.
- CVE-2022-30333HIGHCVSS 7.5EG 9.0⚠ KEV2022-05-09
RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file. NOTE: WinRAR and Android RAR are unaffected.
- CVE-2022-30427HIGHCVSS 7.5EG 7.52022-05-25
In ginadmin through 05-10-2022 the incoming path value is not filtered, resulting in directory traversal.
- CVE-2022-30428HIGHCVSS 7.5EG 7.52022-05-25
In ginadmin through 05-10-2022, the incoming path value is not filtered, resulting in arbitrary file reading.
- CVE-2022-30508MEDIUMCVSS 6.5EG 6.52022-05-26
DedeCMS v5.7.93 was discovered to contain arbitrary file deletion vulnerability in upload.php via the delete parameter.
- CVE-2022-30547CRITICALCVSS 9.9EG 9.92022-08-22
A directory traversal vulnerability exists in the unzipDirectory functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP reque…
- CVE-2022-30572MEDIUMCVSS 6.5EG 6.52022-08-02
The iWay Service Manager Console component of TIBCO Software Inc.'s TIBCO iWay Service Manager contains an easily exploitable Directory Traversal vulnerability that allows a low privileged attacker with network access to read arbitrary res…
- CVE-2022-3060HIGHCVSS 7.3EG 7.32022-10-17
Improper control of a resource identifier in Error Tracking in GitLab CE/EE affecting all versions from 12.7 allows an authenticated attacker to generate content which could cause a victim to make unintended arbitrary requests
- CVE-2022-30804MEDIUMCVSS 6.5EG 6.52022-06-02
elitecms v1.01 is vulnerable to Delete any file via /admin/delete_image.php?file=.
- CVE-2022-3090HIGHCVSS 7.5EG 5.32022-11-17
Red Lion Controls Crimson 3.0 versions 707.000 and prior, Crimson 3.1 versions 3126.001 and prior, and Crimson 3.2 versions 3.2.0044.0 and prior are vulnerable to path traversal. When attempting to open a file using a specific path, the us…
- CVE-2022-3101MEDIUMCVSS 5.5EG 5.52023-03-23
A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permissions of a sensitive file are not sufficiently restricted. This flaw allows a local attacker to use brute force to explore the relevant directory and …
- CVE-2022-31062MEDIUMCVSS 5.3EG 5.32022-06-20
### Impact A plugin public script can be used to read content of system files. ### Patches Upgrade to version 1.0.2. ### Workarounds `b/deploy/index.php` file can be deleted if deploy feature is not used.
- CVE-2022-31159HIGHCVSS 7.9EG 7.92022-07-15
The AWS SDK for Java enables Java developers to work with Amazon Web Services. A partial-path traversal issue exists within the `downloadDirectory` method in the AWS S3 TransferManager component of the AWS SDK for Java v1 prior to version …
- CVE-2022-31163HIGHCVSS 7.5EG 7.52022-07-22
TZInfo is a Ruby library that provides access to time zone data and allows times to be converted using time zone rules. Versions prior to 0.36.1, as well as those prior to 1.2.10 when used with the Ruby data source tzinfo-data, are vulnera…
- CVE-2022-31194HIGHCVSS 8.2EG 8.22022-08-01
DSpace open source software is a repository application which provides durable access to digital resources. dspace-jspui is a UI component for DSpace. The JSPUI resumable upload implementations in SubmissionController and FileUploadRequest…
- CVE-2022-31195HIGHCVSS 7.2EG 7.22022-08-01
DSpace open source software is a repository application which provides durable access to digital resources. In affected versions the ItemImportServiceImpl is vulnerable to a path traversal vulnerability. This means a malicious SAF (simple …
- CVE-2022-31202MEDIUMCVSS 6.5EG 6.52022-07-17
The export function in SoftGuard Web (SGW) before 5.1.5 allows directory traversal to read an arbitrary local file via export or man.tcl.
- CVE-2022-31255MEDIUMCVSS 4.3EG 4.32022-11-10
An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in spacewalk/Uyuni of SUSE Linux Enterprise Module for SUSE Manager Server 4.2, SUSE Linux Enterprise Module for SUSE Manager Server 4.3, SUSE …
- CVE-2022-31268HIGHCVSS 7.5EG 9.02022-05-21
A Path Traversal vulnerability in Gitblit 1.9.3 can lead to reading website files via /resources//../ (e.g., followed by a WEB-INF or META-INF pathname).
- CVE-2022-31372HIGHCVSS 7.5EG 7.52022-06-16
Wiris Mathtype v7.28.0 was discovered to contain a path traversal vulnerability in the resourceFile parameter. This vulnerability is exploited via a crafted request to the resource handler.
- CVE-2022-31395HIGHCVSS 8.8EG 8.82022-06-23
Algo Communication Products Ltd. 8373 IP Zone Paging Adapter Firmware 1.7.6 allows attackers to perform a directory traversal via a web request sent to /fm-data.lua.
- CVE-2022-31457HIGHCVSS 7.5EG 7.52023-07-25
RTX TRAP v1.0 allows attackers to perform a directory traversal via a crafted request sent to the endpoint /data/.
- CVE-2022-3146MEDIUMCVSS 5.5EG 5.52023-03-23
A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permissions of a sensitive file are not sufficiently restricted. This flaw allows a local attacker to use brute force to explore the relevant directory and …
- CVE-2022-31473MEDIUMCVSS 6.8EG 7.72022-08-04
In BIG-IP Versions 16.1.x before 16.1.1 and 15.1.x before 15.1.4, when running in Appliance mode, an authenticated attacker may be able to bypass Appliance mode restrictions due to a directory traversal vulnerability in an undisclosed page…
- CVE-2022-31474HIGHCVSS 7.5EG 9.02023-03-13
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in iThemes BackupBuddy allows Path Traversal.This issue affects BackupBuddy: from 8.5.8.0 through 8.7.4.1.
- CVE-2022-31475MEDIUMCVSS 5.5EG 4.92022-07-21
Authenticated (custom plugin role) Arbitrary File Read via Export function vulnerability in GiveWP's GiveWP plugin <= 2.20.2 at WordPress.
- CVE-2022-31483CRITICALCVSS 9.1EG 8.82022-06-06
An authenticated attacker can upload a file with a filename including “..” and “/” to achieve the ability to upload the desired file anywhere on the filesystem. This vulnerability impacts products based on HID Mercury Intelligent C…
- CVE-2022-31501CRITICALCVSS 9.3EG 9.32022-07-11
The ChaoticOnyx/OnyxForum repository before 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31502CRITICALCVSS 9.3EG 9.32022-07-11
The operatorequals/wormnest repository through 0.4.7 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31503CRITICALCVSS 9.3EG 9.32022-07-11
The orchest/orchest repository before 2022.05.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31504CRITICALCVSS 9.3EG 9.32022-07-11
The ChangeWeDer/BaiduWenkuSpider_flaskWeb repository before 2021-11-29 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31505CRITICALCVSS 9.3EG 9.32022-07-11
The cheo0/MercadoEnLineaBack repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31506CRITICALCVSS 9.3EG 9.32022-07-11
The cmusatyalab/opendiamond repository through 10.1.1 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31507CRITICALCVSS 9.3EG 9.32022-07-11
The ganga-devs/ganga repository before 8.5.10 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31508CRITICALCVSS 9.3EG 9.32022-07-11
The idayrus/evoting repository before 2022-05-08 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31509CRITICALCVSS 9.3EG 9.32022-07-11
The iedadata/usap-dc-website repository through 1.0.1 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31510CRITICALCVSS 9.3EG 9.32022-07-11
The sergeKashkin/Simple-RAT repository before 2022-05-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31511CRITICALCVSS 9.3EG 9.32022-07-11
The AFDudley/equanimity repository through 2014-04-23 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31512CRITICALCVSS 9.3EG 9.32022-07-11
The Atom02/flask-mvc repository through 2020-09-14 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31513CRITICALCVSS 9.3EG 9.32022-07-11
The BolunHan/Krypton repository through 2021-06-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31514CRITICALCVSS 9.3EG 9.32022-07-11
The Caoyongqi912/Fan_Platform repository through 2021-04-20 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31515CRITICALCVSS 9.3EG 9.32022-07-11
The Delor4/CarceresBE repository through 1.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31516CRITICALCVSS 9.3EG 9.32022-07-11
The Harveyzyh/Python repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31517CRITICALCVSS 9.3EG 9.32022-07-11
The HolgerGraef/MSM repository through 2021-04-20 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31518CRITICALCVSS 9.3EG 9.32022-07-11
The JustAnotherSoftwareDeveloper/Python-Recipe-Database repository through 2021-03-31 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31519CRITICALCVSS 9.3EG 9.32022-07-11
The Lukasavicus/WindMill repository through 1.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31520CRITICALCVSS 9.3EG 9.32022-07-11
The Luxas98/logstash-management-api repository through 2020-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31521CRITICALCVSS 9.3EG 9.32022-07-11
The Niyaz-Mohamed/mosaic repository through 1.0.0 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
- CVE-2022-31522CRITICALCVSS 9.3EG 9.32022-07-11
The NotVinay/karaokey repository through 2019-12-11 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →