Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-35

CWE-35

Path Traversal: '.../...//'

Parent: CWE-23 - Relative Path Traversal

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '.../...//' (doubled triple dot slash) sequences that can resolve to a location that is outside of that directory.

154 vulnerabilities with CWE-35

CVE-2025-53880 HIGH

tftpsync - Path Traversal

CVE-2025-27222 HIGH

TRUfusion Enterprise <= 7.10.4.0 - Path Traversal

CVE-2025-41723 CRITICAL

SOAP - Path Traversal

CVE-2025-8051 MEDIUM

Opentext Flipper - Path Traversal

CVE-2025-42937 CRITICAL

SAP Print Service - Path Traversal

CVE-2025-43907 MEDIUM

Dell Data Domain Operating System < 7.10.1.70 - Path Traversal

CVE-2025-20313 MEDIUM

Cisco IOS XE - Code Injection

CVE-2025-43886 MEDIUM

Dell Powerprotect Data Manager < 19.21 - Path Traversal

CVE-2025-48317 HIGH

Stefan Keller WooCommerce Payment Gateway <0.4.9 - Path Traversal

CVE-2025-4956 MEDIUM

AA-Team Pro Bulk Watermark Plugin <2.0 - Path Traversal

CVE-2025-48081 MEDIUM

Printeers Print & Ship <1.17.0 - Path Traversal

CVE-2025-53561 MEDIUM

miniOrange <2.6.0 - Path Traversal

CVE-2025-52712 MEDIUM

BoldGrid Post and Page Builder <1.27.8 - Path Traversal

CVE-2025-8088 HIGH KEV

Rarlab Winrar < 7.13 - Path Traversal

CVE-2025-53417 CRITICAL

DIAView <4.2.0 - Info Disclosure

CVE-2025-20320 MEDIUM

Splunk <9.4.3, 9.3.5, 9.2.7, 9.1.10 - DoS

CVE-2025-52805 HIGH

VaultDweller Leyka <3.31.9 - Path Traversal

CVE-2025-52811 HIGH

Creanncy Davenport - Versatile Blog and Magazine WP Theme <1.3 - Pa...

CVE-2025-52810 HIGH

TMRW-studio Katerio - Magazine <1.5.1 - Path Traversal

CVE-2025-49451 HIGH

Aeroscroll Gallery <1.0.12 - Path Traversal

CVE-2025-47176 HIGH

Microsoft 365 Apps - Path Traversal

CVE-2025-30515 CRITICAL

CyberData 011209 Intercom - File Upload

CVE-2025-49297 HIGH

Qodeinteractive Grill And Chow < 1.6.1 - Path Traversal

CVE-2025-49296 HIGH

Qodeinteractive Grandprix < 1.6.1 - Path Traversal

CVE-2025-49295 HIGH

Qodeinteractive Mediclinic < 2.2 - Path Traversal

Previous Page 2 of 7 Next

Details

Vulnerabilities 154

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy