CWE-23

Relative Path Traversal

Parent: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as ".." that can resolve to a location that is outside of that directory.

391 vulnerabilities with CWE-23
CVE-2025-40605 MEDIUM
Sonicwall Email Security Appliance 5000 Firmware - Path Traversal
CVSS 5.3
CVE-2025-64757 LOW
Astro < 5.14.3 - Path Traversal
CVSS 3.5
CVE-2025-13199 MEDIUM
Fabian Email Logging Interface - Path Traversal
CVSS 5.3
CVE-2025-64446 CRITICAL KEV
Fortinet FortiWeb unauthenticated RCE
CVSS 9.8
CVE-2025-13161 HIGH
IQ-Support - Path Traversal
CVSS 7.5
CVE-2025-64714 MEDIUM
Privatebin < 2.0.3 - Remote Code Execution
CVSS 5.8
CVE-2025-58464 HIGH
QuMagie <2.7.3 - Path Traversal
CVSS 7.5
CVE-2025-58463 MEDIUM
Download Station <5.10.0.304-5.10.0.305 - Path Traversal
CVSS 4.9
CVE-2025-46363 MEDIUM
Dell Secure Connect Gateway <5.30.00.00 - Path Traversal
CVSS 4.3
CVE-2025-55752 HIGH
Apache Tomcat - Path Traversal
CVSS 7.5
CVE-2025-60023 MEDIUM
Productivity Suite <4.4.1.19 - Path Traversal
CVSS 4.0
CVE-2025-59776 MEDIUM
Productivity Suite <4.4.1.19 - Path Traversal
CVSS 4.0
CVE-2025-58429 HIGH
Productivity Suite <4.4.1.19 - Path Traversal
CVSS 7.5
CVE-2025-62498 HIGH
Productivity Suite <4.4.1.19 - Path Traversal
CVSS 8.8
CVE-2025-58456 MEDIUM
Productivity Suite <4.4.1.19 - Path Traversal
CVSS 6.8
CVE-2025-58078 HIGH
Productivity Suite <4.4.1.19 - Path Traversal
CVSS 7.5
CVE-2025-11898 HIGH
Agentflow - Path Traversal
CVSS 7.5
CVE-2025-10249 MEDIUM
Slider Revolution <6.7.37 - Privilege Escalation
CVSS 6.5
CVE-2025-62187 LOW
Anki < 25.02.6 - Path Traversal
CVSS 2.9
CVE-2025-59835 HIGH
LangBot <4.3.5 - Privilege Escalation
CVE-2025-59682 LOW
Django < 4.2.25 - Path Traversal
CVSS 3.1
CVE-2025-60020 MEDIUM
nncp <8.12.0 - Path Traversal
CVSS 6.4
CVE-2025-59341 HIGH
Esm-dev Esm.sh - Path Traversal
CVE-2025-59456 MEDIUM
Jetbrains Teamcity < 2025.07.2 - Path Traversal
CVSS 5.5
CVE-2025-59336 MEDIUM
Luanox <0.1.1 - Path Traversal
Details
Vulnerabilities 391
Links
MITRE CWE Entry Search this CWE With Exploits