Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-73

CWE-73

High likelihood

External Control of File Name or Path

Parent: CWE-642 - External Control of Critical State Data

The product allows user input to control or influence paths or file names that are used in filesystem operations.

396 vulnerabilities with CWE-73

CVE-2025-65115 HIGH

Remote Code Execution Vulnerability in JP1/IT Desktop Management 2 and JP1/NETM/DM

CVE-2025-61879 HIGH

Infoblox NIOS <9.0.7 - Privilege Escalation

CVE-2025-54162 MEDIUM

Qnap File Station < 5.5.6.5190 - Path Traversal

CVE-2025-64712 CRITICAL

Pypi Unstructured < 0.18.18 - Path Traversal

CVE-2025-53912 CRITICAL

MedDream PACS Premium <7.3.6.870 - Info Disclosure

CVE-2025-66292 HIGH

DPanel <1.9.2 - Path Traversal

CVE-2025-66003 HIGH

smb4k <4.0.5 - Local Root Exploit

CVE-2025-14059 MEDIUM

EmailKit plugin <1.6.1 - Path Traversal

CVE-2025-68428 HIGH

Parall Jspdf < 4.0.0 - Path Traversal

CVE-2025-62842 HIGH

HBS 3 Hybrid Backup Sync <26.2.0.938 - Path Traversal

CVE-2025-12654 LOW

WPvivid Backup & Migration <0.9.120 - Path Traversal

CVE-2025-68478 HIGH

Langflow <1.7.0 - Path Traversal

CVE-2025-68155 HIGH

@vitejs/plugin-rs <0.5.8 - Info Disclosure

CVE-2025-66449 HIGH

ConvertX <0.16.0 - Code Injection

CVE-2025-13320 MEDIUM

WP User Manager <2.9.12 - Privilege Escalation

CVE-2025-65473 CRITICAL

EasyImages <2.8.6 - Code Injection

CVE-2025-67461 MEDIUM

Zoom Rooms for macOS <6.6.0 - Info Disclosure

CVE-2025-59516 HIGH

Windows Storage VSP Driver - Privilege Escalation

CVE-2025-65799 MEDIUM

usememos memos <0.25.2 - Path Traversal

CVE-2025-12529 HIGH

WordPress Cost Calculator Builder <3.6.3 - RCE

CVE-2025-66257 CRITICAL

DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter - Pat...

CVE-2025-66254 CRITICAL

DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter - Una...

CVE-2025-13380 MEDIUM

AI Engine for WordPress: ChatGPT - Arbitrary File Read

CVE-2025-30201 HIGH

Wazuh <4.13.0 - Privilege Escalation

CVE-2025-11973 MEDIUM

简数采集器 WordPress Plugin <=2.6.3 - Info Disclosure

Previous Page 4 of 16 Next

Details

Vulnerabilities 396

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy