Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-73

CWE-73

High likelihood

External Control of File Name or Path

Parent: CWE-642 - External Control of Critical State Data

The product allows user input to control or influence paths or file names that are used in filesystem operations.

396 vulnerabilities with CWE-73

CVE-2026-30893 CRITICAL

Wazuh cluster sync path traversal in decompress_files() enables arbitrary file write and code execution from authenticated cluster peer

CVE-2026-42424 MEDIUM

OpenClaw < 2026.4.8 - Local File Exfiltration via Shared Reply MEDIA Paths

CVE-2026-41177 MEDIUM

Squidex has Blind SSRF via file:// Protocol in Restore API leading to Local File Interaction

CVE-2026-4132 HIGH

HTTP Headers < 1.19.2 - Remote Code Execution

CVE-2026-39378 MEDIUM

nbconvert has an Arbitrary File Read via Path Traversal in HTMLExporter Image Embedding

CVE-2026-39377 MEDIUM

nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames

CVE-2026-41389 MEDIUM

OpenClaw 2026.4.7 < 2026.4.15 - Arbitrary File Read via Unvalidated Tool-Result Media Paths

CVE-2026-35465 HIGH

SecureDrop Client has path injection in read_gzip_header_filename()

CVE-2026-40342 CRITICAL

Firebird: Path Traversal + Arbitrary File Write Leads to Remote Code Execution

CVE-2026-35032 HIGH

Jellyfin: Potential SSRF + Arbitrary file read via LiveTV M3U tuner

CVE-2026-39907 HIGH

Unisys WebPerfect Image Suite 3.0 NTLMv2 Hash Leakage via WCF SOAP

CVE-2026-5809 HIGH

wpForo Forum <= 3.0.2 - Authenticated (Subscriber+) Arbitrary File Deletion via 'data[body][fileurl]' Parameter

CVE-2026-5054 HIGH

NoMachine External Control of File Path Local Privilege Escalation Vulnerability

CVE-2026-5053 HIGH

NoMachine External Control of File Path Arbitrary File Deletion Vulnerability

CVE-2026-31939 HIGH

Path Traversal (Arbitrary File Delete) in Chamilo LMS

CVE-2026-40086 MEDIUM

Rembg has a Path Traversal via Custom Model Loading

CVE-2026-35174 CRITICAL

Chyrp Lite has a Path Traversal to Remote Code Execution

CVE-2026-34783 HIGH

Ferret has a Path Traversal in IO::FS::WRITE allows arbitrary file write when scraping malicious websites

CVE-2026-34522 HIGH

SillyTavern: Path traversal in `/api/chats/import` allows arbitrary file write outside intended chat directory

CVE-2026-33949 HIGH

@tinacms/graphql has Path Traversal that leads to overwrite of arbitrary files

CVE-2026-30292 HIGH

Docudepot PDF Reader 1.0.34 - File Overwrite

CVE-2026-30291 HIGH

Ora Tools PDF Reader 4.3.5 - File Overwrite

CVE-2026-30289 HIGH

Tinybeans Private Family Album App 5.9.5-prod - Arbitrary File Overwrite

CVE-2026-30287 HIGH

ACE Scanner PDF Scanner 1.4.5 - File Overwrite

CVE-2026-23898 HIGH

Joomla! Core - [20260305] - Arbitrary file deletion in com_joomlaupdate

Page 1 of 16 Next

Details

Vulnerabilities 396

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy