Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-22

CWE-22

High likelihood

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

9,220 vulnerabilities with CWE-22

CVE-2022-30301 HIGH

FortiAP-U 5.4.0-5.4.6, 6.0.0-6.0.4, 6.2.0-6.2.3 - Authenticated Path Traversal via CLI Commands

CVE-2022-2030 MEDIUM

Zyxel USG FLEX/ATP/VPN Series Firmware - Authenticated Path Traversal via URL Parameter

CVE-2022-31202 MEDIUM

SoftGuard Web <5.1.5 - Path Traversal

CVE-2022-35861 HIGH

pyenv <2.3.2 - Privilege Escalation

CVE-2022-31159 HIGH

AWS SDK for Java <1.12.261 - Path Traversal

CVE-2022-32409 CRITICAL

i3geo 7.0.5 - Local File Inclusion and Remote Code Execution via codemirror.php

CVE-2022-34762 MEDIUM

Schneider Electric OPC UA Module for M580 <1.10 & X80 Advanced RTU >=2.01 Path Traversal

CVE-2022-20220 HIGH

Android - Path Traversal in CallLogProvider

CVE-2022-33690 MEDIUM

Contacts Storage <SMR Jul-2022 Release 1 - Info Disclosure

CVE-2022-31588 CRITICAL

zippies/testplatform <2016-07-19 - Path Traversal

CVE-2022-31587 CRITICAL

yuriyouzhou/KG-fashion-chatbot <2018-05-22 - Path Traversal

CVE-2022-31586 CRITICAL

Unizar-30226-2019-06 - Path Traversal

CVE-2022-31585 CRITICAL

Umeshpatil-dev/Home__internet - Path Traversal

CVE-2022-31584 CRITICAL

stonethree/s3label <2019-08-14 - Path Traversal

CVE-2022-31583 CRITICAL

sravaniboinepelli/AutomatedQuizEval <2020-04-27 - Path Traversal

CVE-2022-31582 CRITICAL

shaolo1/VideoServer <2019-09-21 - Path Traversal

CVE-2022-31581 CRITICAL

scorelab/OpenMF <2022-05-03 - Path Traversal

CVE-2022-31580 CRITICAL

sanojtharindu/caretakerr-api <2021-05-17 - Path Traversal

CVE-2022-31579 CRITICAL

Ralphjzhang/iasset <2022-05-04 - Path Traversal

CVE-2022-31578 HIGH

piaoyunsoft/bt_lnmp <2019-10-10 - Path Traversal

CVE-2022-31577 CRITICAL

longmaoteamtf/audio_aligner_app - Path Traversal

CVE-2022-31576 CRITICAL

heidi-luong1109/shackerpanel <2021-05-25 - Path Traversal

CVE-2022-31575 CRITICAL

duducosmos/livro_python <2018-06-06 - Path Traversal

CVE-2022-31574 CRITICAL

deepaliupadhyay/RealEstate <2018-11-30 - Path Traversal

CVE-2022-31573 CRITICAL

chainer/chainerrl-visualizer <0.1.1 - Path Traversal

Previous Page 176 of 369 Next

Details

Vulnerabilities 9,220

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy