Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-427

CWE-427

Uncontrolled Search Path Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

1,168 vulnerabilities with CWE-427

CVE-2026-26050 HIGH

RICOH Job Log Tool <1.3.7 - DLL Hijacking

CVE-2026-2538 HIGH

Notepad2 4.2.22-4.2.25 - Path Traversal

CVE-2026-2516 HIGH

Unidocs ezPDF DRM Reader/ezPDF Reader 2.0/3.0.0.4 - Path Traversal

CVE-2026-25676 HIGH

M-Track Duo HD <1.0.0 - Code Injection

CVE-2026-2361 HIGH

PostgreSQL Anonymizer < 3.0.1 - Privilege Escalation via Malicious Function in Temporary View

CVE-2026-2360 HIGH

PostgreSQL Anonymizer - Privilege Escalation

CVE-2026-25656 HIGH

SINEC NMS < V4.0 SP3 and UMC < V2.15.2.1 - Uncontrolled Search Path Element

CVE-2026-25655 HIGH

SINEC NMS < V4.0 SP2 - Uncontrolled Search Path Element via Configuration File Modification

CVE-2026-23741 NONE

Asterisk <20.7-cert9, 20.18.2, 21.12.1, 22.8.2, 23.2.2 - Privilege ...

CVE-2026-23740 NONE

Sangoma Certified Asterisk - Uncontrolled Search Path Element via World-Writable Directory

CVE-2026-24694 HIGH

Roland Cloud Manager <3.1.19 - Code Injection

CVE-2026-25129 MEDIUM

PsySH 0.11.0-0.11.22 and 0.12.0-0.12.18 - Unauthenticated Arbitrary Code Execution via Malicious .psysh.php File

CVE-2026-21408 HIGH

beat-access <3.0.3 - Code Injection

CVE-2026-0776 HIGH

Discord Client - Privilege Escalation

CVE-2026-23755 HIGH

D-Link D-View 8 <2.0.1.107 - Code Injection

CVE-2026-24016 HIGH

ServerView Agents for Windows - Uncontrolled Search Path Element

CVE-2026-21427 HIGH

Pioneer Corporation - DLL Hijacking

CVE-2025-41670 HIGH

Phoenix Contact AXC F 1152 - Untrusted Search Path

CVE-2025-14575 LOW

Uncontrolled Search Path Element in Qt Network OpenSSL TLS backend allows rogue CA certificate loading

CVE-2025-62628 HIGH

AMD AIM-T Manageability Service - Uncontrolled Search Path Element via OpenSSL Initialization

CVE-2025-36515 MEDIUM

AI Playground software < 3.0.0 alpha - Uncontrolled Search Path Element

CVE-2025-35969 MEDIUM

Intel(R) Server Firmware Update Utility Software - Uncontrolled Search Path Element

CVE-2025-69599 CRITICAL

RayVentory Scan Engine through 12.6 Update 8 - Privilege Escalation

CVE-2025-10549 MEDIUM

DLL Hijacking in EfficientLab Controlio Leads to Local Privilege Escalation

CVE-2025-14821 HIGH

Libssh: libssh: insecure default configuration leads to local man-in-the-middle attacks on windows

Previous Page 4 of 47 Next

Details

Vulnerabilities 1,168

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy