Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-36

CWE-36

Absolute Path Traversal

Parent: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize absolute path sequences such as "/abs/path" that can resolve to a location that is outside of that directory.

117 vulnerabilities with CWE-36

CVE-2025-8575 HIGH

LWS Cleaner <2.4.1.3 - Privilege Escalation

CVE-2025-9518 HIGH

Atec Debug <1.2.22 - Privilege Escalation

CVE-2025-9516 MEDIUM

Atec Debug <1.2.22 - Info Disclosure

CVE-2025-9259 MEDIUM

WebITR - Path Traversal

CVE-2025-9258 MEDIUM

WebITR - Path Traversal

CVE-2025-9257 MEDIUM

WebITR - Path Traversal

CVE-2025-9256 MEDIUM

WebITR - Path Traversal

CVE-2025-57790 HIGH

Commvault < 11.36.60 - Absolute Path Traversal

CVE-2025-8912 HIGH

Wellchoose Organization Portal System - Path Traversal

CVE-2025-8909 MEDIUM

Wellchoose Organization Portal System - Path Traversal

CVE-2025-8213 HIGH

NinjaScanner - Path Traversal

CVE-2025-53079 MEDIUM

Samsung Data Management Server Firmware - Absolute Path Traversal

CVE-2025-8009 MEDIUM

Security Ninja - WordPress Security Plugin & Firewall <5.243 - Info...

CVE-2025-53651 MEDIUM

Jenkins HTML Publisher Plugin <425 - Info Disclosure

CVE-2025-53392 MEDIUM

pfSense CE 2.8.0 - Path Traversal

CVE-2025-6381 HIGH

Beeteam368 Vidmov < 2.3.5 - Absolute Path Traversal

CVE-2025-5927 HIGH

Wpeverest Everest Forms < 1.9.5 - Absolute Path Traversal

CVE-2025-4799 HIGH

Wp-downloadmanager < 1.68.11 - Absolute Path Traversal

CVE-2025-36574 HIGH

Dell Wyse Management Suite < 5.2 - Absolute Path Traversal

CVE-2025-46822 HIGH

OsamaTaher Java-springboot-codebase - Path Traversal

CVE-2025-0001 MEDIUM

Abacus ERP <2024.210.16036-2022.105.15542 - Info Disclosure

CVE-2025-0851 CRITICAL

Ai.djl API < 0.31.1 - Path Traversal

CVE-2024-13945 MEDIUM

ASPECT <3.* - Info Disclosure

CVE-2024-48850 HIGH

ASPECT <3.08.03 - Path Traversal

CVE-2024-8501 HIGH

modelscope/agentscope <0.0.4 - Info Disclosure

Previous Page 2 of 5 Next

Details

Vulnerabilities 117

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy