Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-22

CWE-22

High likelihood

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

9,220 vulnerabilities with CWE-22

CVE-2022-31521 CRITICAL

Niyaz-Mohamed/mosaic <1.0.0 - Path Traversal

CVE-2022-31520 CRITICAL

Luxas98/logstash-management-api <2020-05-04 - Path Traversal

CVE-2022-31519 CRITICAL

Lukasavicus/WindMill <1.0 - Path Traversal

CVE-2022-31518 CRITICAL

JustAnotherSoftwareDeveloper/Python-Recipe-Database <2021-03-31 - P...

CVE-2022-31517 CRITICAL

HolgerGraef/MSM <2021-04-20 - Path Traversal

CVE-2022-31516 CRITICAL

Harveyzyh/Python <2022-05-04 - Path Traversal

CVE-2022-31515 CRITICAL

Delor4/CarceresBE <1.0 - Path Traversal

CVE-2022-31514 CRITICAL

Caoyongqi912/Fan_Platform <2021-04-20 - Path Traversal

CVE-2022-31513 CRITICAL

BolunHan/Krypton <2021-06-03 - Path Traversal

CVE-2022-31512 CRITICAL

Atom02/flask-mvc <2020-09-14 - Path Traversal

CVE-2022-31511 CRITICAL

AFDudley/equanimity <2014-04-23 - Path Traversal

CVE-2022-31510 CRITICAL

SergeKashkin/Simple-RAT <2022-05-03 - Path Traversal

CVE-2022-31509 CRITICAL

GitHub iedadata/usap-dc-website <1.0.1 - Path Traversal

CVE-2022-31508 CRITICAL

idayrus/evoting <2022-05-08 - Path Traversal

CVE-2022-31507 CRITICAL

ganga-devs/ganga <8.5.10 - Path Traversal

CVE-2022-31506 CRITICAL

cmusatyalab/opendiamond <10.1.1 - Path Traversal

CVE-2022-31505 CRITICAL

cheo0/MercadoEnLineaBack - Path Traversal

CVE-2022-31504 CRITICAL

ChangeWeDer/BaiduWenkuSpider_flaskWeb <2021-11-29 - Path Traversal

CVE-2022-31503 CRITICAL

orchest <2022.05.0 - Path Traversal

CVE-2022-31502 CRITICAL

operatorequals/wormnest <0.4.7 - Path Traversal

CVE-2022-31501 CRITICAL

ChaoticOnyx/OnyxForum <2022-05-04 - Path Traversal

CVE-2022-35410 HIGH

mat2 < 0.13.0 - Path Traversal via ZIP Archive Cleaning

CVE-2022-25046 CRITICAL

Control WebPanel < 0.9.8.1124 - Path Traversal and Remote Code Execution via loader.php

CVE-2022-20862 MEDIUM

Cisco Unified Communications Manager < 12.5(1)su6 and 14.0-14su2 - Authenticated Path Traversal

CVE-2022-20812 CRITICAL

Cisco Expressway and TelePresence VCS < X14.0.7 - Path Traversal and Arbitrary File Write

Previous Page 179 of 369 Next

Details

Vulnerabilities 9,220

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy