Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-36

CWE-36

Absolute Path Traversal

Parent: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize absolute path sequences such as "/abs/path" that can resolve to a location that is outside of that directory.

117 vulnerabilities with CWE-36

CVE-2024-8778 MEDIUM

OMFLOW - Info Disclosure

CVE-2024-7323 MEDIUM

Digiwin Easyflow .net < 6.6.17 - Path Traversal

CVE-2024-28806 HIGH

Italtel I-mcs Nfv - Absolute Path Traversal

CVE-2024-20401 CRITICAL

Cisco Secure Email Gateway - File Overwrite

CVE-2024-6250 HIGH

parisneo/lollms-webui <9.6 - Path Traversal

CVE-2024-33620 HIGH

ID Link Manager/FUJITSU Software TIME CREATOR - Path Traversal

CVE-2024-4881 HIGH

Lollms < 5.9.0 - Path Traversal

CVE-2024-2548 HIGH

Lollms Web UI < 9.5 - Path Traversal

CVE-2024-2362 CRITICAL

Lollms Web UI - Path Traversal

CVE-2024-29053 HIGH

Microsoft Defender For Iot < 24.1.3 - Path Traversal

CVE-2024-21323 HIGH

Microsoft Defender For Iot < 24.1.3 - Absolute Path Traversal

CVE-2024-1703 LOW

Crmeb - Path Traversal

CVE-2023-41830 MEDIUM

Ready For - Path Traversal

CVE-2023-50955 LOW

IBM Infosphere Information Server - Path Traversal

CVE-2023-5390 MEDIUM

Honeywell Controledge Unit Operations... - Path Traversal

CVE-2023-30970 MEDIUM

Gotham Table service & Forward App - Path Traversal

CVE-2023-5115 MEDIUM

Ansible - Path Traversal

CVE-2023-36786 HIGH

Skype for Business - RCE

CVE-2023-5022 MEDIUM

Dedecms < 5.7.100 - Absolute Path Traversal

CVE-2023-40597 HIGH

Splunk Enterprise <8.2.12, 9.0.6, 9.1.1 - Path Traversal

CVE-2023-4172 MEDIUM

Cdwanjiang Flash Flood Disaster Monit... - Path Traversal

CVE-2023-3765 CRITICAL

Lfprojects Mlflow < 2.5.0 - Absolute Path Traversal

CVE-2023-34135 MEDIUM

SonicWall GMS & Analytics <9.3.2-SP1 - Path Traversal

CVE-2023-32054 HIGH

Microsoft Windows 10 1507 < 10.0.10240.20048 - Absolute Path Traversal

CVE-2023-2765 MEDIUM

Weaver E-office - Absolute Path Traversal

Previous Page 4 of 5 Next

Details

Vulnerabilities 117

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy