Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-22

CWE-22

High likelihood

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

8,747 vulnerabilities with CWE-22

CVE-2026-35206 MEDIUM

Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment

CVE-2026-39977 MEDIUM

flatpak-builder has a path traversal leading to arbitrary file read on host when installing licence files

CVE-2026-39981 HIGH

AGiXT has a Path Traversal in safe_join()

CVE-2026-5962 HIGH

Tenda CH22 httpd R7WebsSecurityHandlerfunction path traversal

CVE-2026-35204 HIGH

Helm has a path traversal in plugin metadata version enables arbitrary file write outside Helm plugin directory

CVE-2026-5849 HIGH

Tenda i12 HTTP path traversal

CVE-2026-5841 HIGH

Tenda i3 HTTP R7WebsSecurityHandler path traversal

CVE-2026-40027 HIGH

ALEAPP NQ Vault Artifact Parser Path Traversal

CVE-2026-40024 HIGH

Sleuth Kit tsk_recover Path Traversal

CVE-2026-5436 HIGH

MW WP Form <= 5.1.1 - Unauthenticated Arbitrary File Move via regenerate_upload_file_keys

CVE-2026-39844 MEDIUM

NiceGUI has a Path Traversal in NiceGUI Upload Filename on Windows via Backslash Bypass of PurePosixPath Sanitization

CVE-2026-39859 HIGH

LiquidJS has a renderFile() / parseFile() bypass configured root and allow arbitrary file read

CVE-2026-33466 HIGH

Improper Limitation of a Pathname to a Restricted Directory in Logstash Leading to Arbitrary File Write

CVE-2026-39408 HIGH

Hono has a path traversal in toSSG() allows writing files outside the output directory

CVE-2026-39407 MEDIUM

Hono has a middleware bypass via repeated slashes in serveStatic

CVE-2026-39406 MEDIUM

@hono/node-server has a middleware bypass via repeated slashes in serveStatic

CVE-2026-3243 HIGH

Advanced Members for ACF <= 1.2.5 - Authenticated (Subscriber+) Arbitrary File Deletion via Path Traversal

CVE-2026-39847 CRITICAL

Emmett has a path traversal in internal assets handler

CVE-2026-34371 MEDIUM

LibreChat Affected by Arbitrary File Write via `execute_code` Artifact Filename Traversal

CVE-2026-34079 HIGH

Flatpak affected by arbitrary file deletion on the host filesystem

CVE-2026-39369 HIGH

WWBN AVideo's GIF poster fetch bypasses traversal scrubbing and exposes local files through public media URLs

CVE-2026-39365 MEDIUM

Vite has a Path Traversal in Optimized Deps `.map` Handling

CVE-2026-39345 MEDIUM

OrangeHRM Affected by Arbitrary File Read via Path Traversal in Email Template Loader

CVE-2026-35573 CRITICAL

ChurchCRM has a Path traversal leads to RCE

CVE-2026-24147 MEDIUM

Nvidia Triton Inference Server - Denial of Service

Previous Page 7 of 350 Next

Details

Vulnerabilities 8,747

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy