Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-22

CWE-22

High likelihood

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

9,161 vulnerabilities with CWE-22

CVE-2023-35860 MEDIUM

Modern Campus Omni CMS 2023.1 - Unauthenticated Directory Traversal via dir Parameter

CVE-2023-51401 MEDIUM

Brainstorm Force Ultimate Addons <1.35.13 - Path Traversal

CVE-2023-49753 HIGH

spoonthemes Adifier System <3.1.4 - Path Traversal

CVE-2023-47679 MEDIUM

Qi Addons For Elementor <= 1.6.3 - PHP Local File Inclusion via Path Traversal

CVE-2023-47178 HIGH

The Plus Addons for Elementor Pro <= 5.2.8 - Unauthenticated Local File Inclusion via Path Traversal

CVE-2023-46784 HIGH

ICS Calendar <10.12.0.3 - Path Traversal

CVE-2023-46205 HIGH

Brainstorm Force Ultimate Addons <3.19.14 - Path Traversal

CVE-2023-46197 MEDIUM

Supsystic Com Popup <1.10.19 - Path Traversal

CVE-2023-45652 MEDIUM

Justin Silver Remote Content Shortcode <1.5 - Path Traversal

CVE-2023-39163 HIGH

Averta Phlox Shop <2.0.0 - Path Traversal

CVE-2023-38399 HIGH

Averta Phlox Portfolio <2.3.1 - Path Traversal

CVE-2023-37888 HIGH

Shortcodes and extra features for Phlox theme <= 2.14.0 - Unauthenticated Local File Inclusion via Path Traversal

CVE-2023-37385 HIGH

StylemixThemes Consulting <6.5.6 - Path Traversal

CVE-2023-35881 HIGH

WooCommerce One Page Checkout <2.3.0 - Path Traversal

CVE-2023-33310 MEDIUM

Valiano Unite Gallery Lite <1.7.59 - Path Traversal

CVE-2023-32297 CRITICAL

LWS Affiliation <2.2.6 - Path Traversal

CVE-2023-32110 HIGH

JupiterX <= 3.0.0 - PHP Local File Inclusion via Path Traversal

CVE-2023-26526 HIGH

Nota-Info Bookly <21.7.1 - Path Traversal

CVE-2023-25050 HIGH

Shortcodes Ultimate <5.12.6 - Path Traversal

CVE-2023-24379 MEDIUM

Web-Settler Landing Page Builder - Free Landing Page Templates <3.1...

CVE-2023-23888 HIGH

Rank Math SEO <1.0.107.2 - Path Traversal

CVE-2023-23872 MEDIUM

German Mesky GMAce <1.5.2 - Path Traversal

CVE-2023-23700 HIGH

OceanWP < 3.4.1 - Authenticated Local File Inclusion via Path Traversal

CVE-2023-40297 HIGH

Stakater Forecastle < 1.0.139 - Path Traversal via URL-Encoded Backslash

CVE-2023-5938 HIGH

Nozomi Networks Arc < 1.6.0 - Path Traversal via Zip Slip Attack

Previous Page 127 of 367 Next

Details

Vulnerabilities 9,161

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy