Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-73

CWE-73

High likelihood

External Control of File Name or Path

Parent: CWE-642 - External Control of Critical State Data

The product allows user input to control or influence paths or file names that are used in filesystem operations.

449 vulnerabilities with CWE-73

CVE-2025-13380 MEDIUM

AI Engine for WordPress: ChatGPT - Arbitrary File Read

CVE-2025-30201 HIGH

Wazuh <4.13.0 - Privilege Escalation

CVE-2025-11973 MEDIUM

简数采集器 WordPress Plugin <=2.6.3 - Info Disclosure

CVE-2025-13322 HIGH

WP AUDIO GALLERY <2.0 - Privilege Escalation

CVE-2025-64714 MEDIUM

PrivateBin 1.7.7-2.0.3 - Unauthenticated Local File Inclusion via Template Cookie

CVE-2025-64739 MEDIUM

Zoom Meeting SDK < 6.5.10 - Unauthenticated Information Disclosure via File Path Control

CVE-2025-64738 MEDIUM

Zoom Workplace for macOS <6.5.10 - Info Disclosure

CVE-2025-59511 HIGH

Windows WLAN Service - Privilege Escalation

CVE-2025-20614 MEDIUM

Intel(R) CIP <WIN_DCA_2.4.0.11001 - Privilege Escalation

CVE-2025-8998 LOW

AXIS OS 6.50.0-12.7.27 - Authenticated DoS via File Upload

CVE-2025-11451 HIGH

Auto Amazon Links - Amazon Associates Affiliate Plugin <5.4.3 - Inf...

CVE-2025-12915 MEDIUM

70mai X200 <20251019 - File Inclusion

CVE-2025-64486 CRITICAL

calibre < 8.14.0 - Arbitrary File Write and Remote Code Execution via FB2 Binary Asset Filename

CVE-2025-12137 MEDIUM

Import WP <= 2.14.16 - Authenticated Arbitrary File Read via attach_file()

CVE-2025-62611 HIGH

aiomysql < 0.3.0 - Arbitrary File Read via LOAD_LOCAL Instruction

CVE-2025-8050 MEDIUM

OpenText Flipper 3.1.2 - Path Traversal

CVE-2025-8048 MEDIUM

OpenText Flipper 3.1.2 - Path Traversal via Stored Document ID

CVE-2025-11738 MEDIUM

Media Library Assistant <3.29 - Info Disclosure

CVE-2025-62382 HIGH

Frigate < 0.16.2 - Authenticated Arbitrary File Read via Export Thumbnail Path

CVE-2025-59483 MEDIUM

Configuration Utility - Info Disclosure

CVE-2025-59292 HIGH

Confidential Azure Container Instances - Privilege Escalation

CVE-2025-59291 HIGH

Confidential Azure Container Instances - Privilege Escalation

CVE-2025-59244 MEDIUM

Windows Core Shell - Path Traversal

CVE-2025-59200 HIGH

Data Sharing Service Client - Spoofing

CVE-2025-59185 MEDIUM

Windows Core Shell - Path Traversal

Previous Page 7 of 18 Next

Details

Vulnerabilities 449

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy