CWE-29
44 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-29page 1 of 1
- CVE-2021-23391HIGHCVSS 7.3EG 7.32021-06-07
This affects all versions of package calipso. It is possible for a malicious module to overwrite files on an arbitrary file system through the module install functionality.
- CVE-2022-2788LOWCVSS 3.9EG 7.32022-08-19
Emerson Electric's Proficy Machine Edition Version 9.80 and prior is vulnerable to CWE-29 Path Traversal: '\..\Filename', also known as a ZipSlip attack, through an upload procedure which enables attackers to implant a malicious .BLZ file …
- CVE-2023-0104CRITICALCVSS 9.3EG 7.82023-02-22
The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data. …
- CVE-2023-0316MEDIUMCVSS 5.5EG 5.52023-01-16
Path Traversal: '\..\filename' in GitHub repository froxlor/froxlor prior to 2.0.0.
- CVE-2023-1034HIGHCVSS 8.8EG 8.82023-02-25
Path Traversal: '\..\filename' in GitHub repository salesagility/suitecrm prior to 7.12.9.
- CVE-2023-1177CRITICALCVSS 9.3EG 9.32023-03-24
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.2.1.
- CVE-2023-2780CRITICALCVSS 9.8EG 9.82023-05-17
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.3.1.
- CVE-2023-2984HIGHCVSS 8.8EG 8.82023-05-30
Path Traversal: '\..\filename' in GitHub repository pimcore/pimcore prior to 10.5.22.
- CVE-2023-6021HIGHCVSS 7.5EG 9.02023-11-16
LFI in Ray's log API endpoint allows attackers to read any file on the server without authentication. The issue is fixed in version 2.8.1+. Ray maintainers' response can be found here: https://www.anyscale.com/blog/update-on-ray-cves-cve-2…
- CVE-2023-6023HIGHCVSS 7.5EG 8.62023-11-16
An attacker can read any file on the filesystem on the server hosting ModelDB through an LFI in the artifact_path URL parameter.
- CVE-2023-6038HIGHCVSS 7.5EG 9.32023-11-16
A Local File Inclusion (LFI) vulnerability exists in the h2o-3 REST API, allowing unauthenticated remote attackers to read arbitrary files on the server with the permissions of the user running the h2o-3 instance. This issue affects the de…
- CVE-2023-6130HIGHCVSS 8.8EG 7.52023-11-14
Path Traversal: '\..\filename' in GitHub repository salesagility/suitecrm prior to 7.14.2, 7.12.14, 8.4.2.
- CVE-2023-6831HIGHCVSS 8.1EG 8.12023-12-15
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2.
- CVE-2023-6909HIGHCVSS 7.5EG 7.52023-12-18
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2.
- CVE-2023-6975CRITICALCVSS 9.8EG 9.82023-12-20
A malicious user could use this issue to get command execution on the vulnerable machine and get access to data & models information.
- CVE-2023-6977HIGHCVSS 7.5EG 7.52023-12-20
This vulnerability enables malicious users to read sensitive files on the server.
- CVE-2024-1561HIGHCVSS 7.5EG 9.02024-04-16
An issue was discovered in gradio-app/gradio, where the `/component_server` endpoint improperly allows the invocation of any method on a `Component` class with attacker-controlled arguments. Specifically, by exploiting the `move_resource_t…
- CVE-2024-2083CRITICALCVSS 9.9EG 9.92024-04-16
A directory traversal vulnerability exists in the zenml-io/zenml repository, specifically within the /api/v1/steps endpoint. Attackers can exploit this vulnerability by manipulating the 'logs' URI path in the request to fetch arbitrary fil…
- CVE-2024-21518HIGHCVSS 7.2EG 7.22024-06-22
This affects versions of the package opencart/opencart from 4.0.0.0. A Zip Slip issue was identified via the marketplace installer due to improper sanitization of the target path, allowing files within a malicious archive to traverse the f…
- CVE-2024-21542HIGHCVSS 8.6EG 8.62024-12-10
Versions of the package luigi before 3.6.0 are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) due to improper destination file path validation in the _extract_packages_archive function.
- CVE-2024-2178HIGHCVSS 7.5EG 7.52024-06-02
A path traversal vulnerability exists in the parisneo/lollms-webui, specifically within the 'copy_to_custom_personas' endpoint in the 'lollms_personalities_infos.py' file. This vulnerability allows attackers to read arbitrary files by mani…
- CVE-2024-2358CRITICALCVSS 9.8EG 9.82024-05-16
A path traversal vulnerability in the '/apply_settings' endpoint of parisneo/lollms-webui allows attackers to execute arbitrary code. The vulnerability arises due to insufficient sanitization of user-supplied input in the configuration set…
- CVE-2024-2360CRITICALCVSS 9.8EG 9.82024-06-06
parisneo/lollms-webui is vulnerable to path traversal attacks that can lead to remote code execution due to insufficient sanitization of user-supplied input in the 'Database path' and 'PDF LaTeX path' settings. An attacker can exploit this…
- CVE-2024-2361CRITICALCVSS 9.6EG 9.62024-05-16
A vulnerability in the parisneo/lollms-webui allows for arbitrary file upload and read due to insufficient sanitization of user-supplied input. Specifically, the issue resides in the `install_model()` function within `lollms_core/lollms/bi…
- CVE-2024-2624CRITICALCVSS 9.8EG 9.42024-06-06
A path traversal and arbitrary file upload vulnerability exists in the parisneo/lollms-webui application, specifically within the `@router.get("/switch_personal_path")` endpoint in `./lollms-webui/lollms_core/lollms/server/endpoints/lollms…
- CVE-2024-2914HIGHCVSS 8.8EG 7.82024-06-06
A TarSlip vulnerability exists in the deepjavalibrary/djl, affecting version 0.26.0 and fixed in version 0.27.0. This vulnerability allows an attacker to manipulate file paths within tar archives to overwrite arbitrary files on the target …
- CVE-2024-2928HIGHCVSS 7.5EG 9.02024-06-06
A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically in version 2.9.2, which was fixed in version 2.11.3. This vulnerability arises from the application's failure to properly validate URI fragments for d…
- CVE-2024-3429CRITICALCVSS 9.8EG 9.82024-06-06
A path traversal vulnerability exists in the parisneo/lollms application, specifically within the `sanitize_path_from_endpoint` and `sanitize_path` functions in `lollms_core\lollms\security.py`. This vulnerability allows for arbitrary file…
- CVE-2024-3435HIGHCVSS 8.4EG 8.42024-05-16
A path traversal vulnerability exists in the 'save_settings' endpoint of the parisneo/lollms-webui application, affecting versions up to the latest release before 9.5. The vulnerability arises due to insufficient sanitization of the 'confi…
- CVE-2024-34470HIGHCVSS 8.6EG 9.02024-05-06
An issue was discovered in HSC Mailinspector 5.2.17-3 through v.5.2.18. An Unauthenticated Path Traversal vulnerability exists in the /public/loader.php file. The path parameter does not properly filter whether the file and directory passe…
- CVE-2024-3573CRITICALCVSS 9.3EG 9.32024-04-16
mlflow/mlflow is vulnerable to Local File Inclusion (LFI) due to improper parsing of URIs, allowing attackers to bypass checks and read arbitrary files on the system. The issue arises from the 'is_local_uri' function's failure to properly …
- CVE-2024-3848HIGHCVSS 7.5EG 7.52024-05-16
A path traversal vulnerability exists in mlflow/mlflow version 2.11.0, identified as a bypass for the previously addressed CVE-2023-6909. The vulnerability arises from the application's handling of artifact URLs, where a '#' character can …
- CVE-2024-4320CRITICALCVSS 9.8EG 9.82024-06-06
A remote code execution (RCE) vulnerability exists in the '/install_extension' endpoint of the parisneo/lollms-webui application, specifically within the `@router.post("/install_extension")` route handler. The vulnerability arises due to i…
- CVE-2024-4322HIGHCVSS 7.5EG 7.52024-05-16
A path traversal vulnerability exists in the parisneo/lollms-webui application, specifically within the `/list_personalities` endpoint. By manipulating the `category` parameter, an attacker can traverse the directory structure and list any…
- CVE-2024-4841LOWCVSS 3.3EG 4.02024-06-23
A Path Traversal vulnerability exists in the parisneo/lollms-webui, specifically within the 'add_reference_to_local_mode' function due to the lack of input sanitization. This vulnerability affects versions v9.6 to the latest. By exploiting…
- CVE-2024-5211HIGHCVSS 7.2EG 9.12024-06-12
A path traversal vulnerability in mintplex-labs/anything-llm allowed a manager to bypass the `normalizePath()` function, intended to defend against path traversal attacks. This vulnerability enables the manager to read, delete, or overwrit…
- CVE-2024-5443CRITICALCVSS 9.8EG 9.82024-06-22
CVE-2024-4320 describes a vulnerability in the parisneo/lollms software, specifically within the `ExtensionBuilder().build_extension()` function. The vulnerability arises from the `/mount_extension` endpoint, where a path traversal issue a…
- CVE-2024-5926CRITICALCVSS 9.1EG 9.12024-06-30
A path traversal vulnerability in the get-project-files functionality of stitionai/devika allows attackers to read arbitrary files from the filesystem and cause a Denial of Service (DoS). This issue is present in all versions of the applic…
- CVE-2024-6139HIGHCVSS 7.3EG 7.32024-06-27
A path traversal vulnerability exists in the XTTS server of the parisneo/lollms package version v9.6. This vulnerability allows an attacker to write audio files to arbitrary locations on the system and enumerate file paths. The issue arise…
- CVE-2024-6394HIGHCVSS 7.5EG 7.52024-09-30
A Local File Inclusion vulnerability exists in parisneo/lollms-webui versions below v9.8. The vulnerability is due to unverified path concatenation in the `serve_js` function in `app.py`, which allows attackers to perform path traversal at…
- CVE-2024-6396CRITICALCVSS 9.8EG 9.82024-07-12
A vulnerability in the `_backup_run` function in aimhubio/aim version 3.19.3 allows remote attackers to overwrite any file on the host server and exfiltrate arbitrary data. The vulnerability arises due to improper handling of the `run_hash…
- CVE-2024-7774CRITICALCVSS 9.1EG 9.12024-10-29
A path traversal vulnerability exists in the `getFullPath` method of langchain-ai/langchainjs version 0.2.5. This vulnerability allows attackers to save files anywhere in the filesystem, overwrite existing text files, read `.txt` files, an…
- CVE-2024-7962HIGHCVSS 7.5EG 7.52024-10-29
An arbitrary file read vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240628 due to insufficient validation when loading prompt template files. An attacker can read any file that matches specific criteria using an absolute pa…
- CVE-2026-24217HIGHCVSS 8.8EG 8.82026-05-20
NVIDIA BioNeMo Core for Linux contains a vulnerability where a user could cause a path traversal by loading a malicious file. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosur…
Map vulnerabilities like CWE-29 to your infrastructure
EchelonGraph correlates every CVE — across CWE-29 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →