CWE-24

Path Traversal: '../filedir'

Parent: CWE-23 - Relative Path Traversal

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize "../" sequences that can resolve to a location that is outside of that directory.

108 vulnerabilities with CWE-24
CVE-2025-44962 MEDIUM
Commscope Ruckus Smartzone Firmware < 6.1.2 - Path Traversal
CVSS 5.0
CVE-2025-54769 HIGH
Xorux Lpar2rrd < 8.04 - Remote Code Execution
CVSS 8.8
CVE-2025-45582 MEDIUM
GNU Tar < 1.35 - Path Traversal
CVSS 4.1
CVE-2025-53513 HIGH
Juju - Path Traversal
CVSS 8.8
CVE-2025-48050 HIGH
DOMPurify <6bc6d60 - Path Traversal
CVSS 7.5
CVE-2025-47423 MEDIUM
Personal Weather Station Dashboard 12_lts - Path Traversal
CVSS 5.8
CVE-2025-27920 HIGH KEV
Srimax Output Messenger < 2.0.63 - Path Traversal
CVSS 7.2
CVE-2025-46646 MEDIUM
Artifex Ghostscript <10.05.0 - Info Disclosure
CVSS 4.5
CVE-2025-43928 MEDIUM
Infodraw Pmrs-102 Firmware - Path Traversal
CVSS 5.8
CVE-2025-43919 MEDIUM
GNU Mailman < 2.1.39 - Path Traversal
CVSS 5.8
CVE-2025-32807 MEDIUM
FusionDirectory <1.5 - Path Traversal
CVSS 5.3
CVE-2025-2961 MEDIUM
opensolon <3.1.0 - Path Traversal
CVSS 4.3
CVE-2025-30343 LOW
OpenSlides <4.2.5 - Path Traversal
CVSS 3.0
CVE-2025-1599 MEDIUM
Mayurik Best Church Management Software - Path Traversal
CVSS 5.4
CVE-2025-1588 MEDIUM
Phpgurukul Online Nurse Hiring System - Path Traversal
CVSS 6.5
CVE-2025-1584 MEDIUM
Org.noear Solon-web-staticfiles < 3.0.9 - Path Traversal
CVSS 4.3
CVE-2025-1086 MEDIUM
Safetytest Cloud-Master Server <1.1.1 - Path Traversal
CVSS 5.3
CVE-2025-0390 MEDIUM
Huayi-tec Jeewms < 2025-01-01 - Path Traversal
CVSS 5.3
CVE-2024-43035 MEDIUM
Fonoster 0.5.5 - Path Traversal
CVSS 5.8
CVE-2024-53636 MEDIUM
Serosoft Academia SIS EagleR-1.0.118 - RCE
CVSS 6.4
CVE-2024-13130 MEDIUM
Dahua IPC-HFW1200S-20241222 - Path Traversal
CVSS 4.3
CVE-2024-12897 MEDIUM
Intelbras VIP S3020 G2-VIP S4320 G2 20241222 - Path Traversal
CVSS 4.3
CVE-2024-12482 MEDIUM
Cjbi Wetech-cms - Path Traversal
CVSS 4.3
CVE-2024-10379 MEDIUM
Esafenet Cdg - Path Traversal
CVSS 4.3
CVE-2024-6786 MEDIUM
MQTT - Info Disclosure
CVSS 6.5
Details
Vulnerabilities 108
Links
MITRE CWE Entry Search this CWE With Exploits