Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-22 (对路径名的限制不恰当(路径遍历)) — Vulnerability Class 3344

3344 vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-26071 Cisco SD-WAN vEdge Arbitrary File Creation Vulnerability — Cisco Catalyst SD-WAN Manager 8.4 High2024-11-18
CVE-2024-11303 Path Traversal — JetPort 5601 7.5AIHighAI2024-11-18
CVE-2024-41971 WAGO: Arbitrary File Overwrite in Multiple Devices — CC100 0751-9x01 8.1 High2024-11-18
CVE-2024-9935 PDF Generator Addon for Elementor Page Builder <= 2.0.0 - Unauthenticated Arbitrary File Download — PDF Generator for WordPress Elementor 7.5 High2024-11-16
CVE-2024-11239 Landray EKP API Interface import.do deleteFile path traversal — EKP 5.4 Medium2024-11-15
CVE-2024-11238 Landray EKP sysUiComponent.do delPreviewFile path traversal — EKP 6.5 Medium2024-11-15
CVE-2024-42499 FitNesse 路径遍历漏洞 — FitNesse 7.5AIHighAI2024-11-15
CVE-2024-52378 WordPress DigiPass plugin <= 0.3.0 - Arbitrary File Download vulnerability — DigiPass 7.5 High2024-11-14
CVE-2024-52396 WordPress WOLF plugin <= 1.0.8.3 - CSV Limited Path Traversal vulnerability — WOLF 4.9 Medium2024-11-14
CVE-2024-52371 WordPress Global Gateway e4 plugin <= 2.0 - Arbitrary File Deletion vulnerability — Global Gateway e4 | Payeezy Gateway | 8.6 High2024-11-14
CVE-2024-11210 EyouCMS FilemanagerLogic.php editFile path traversal — EyouCMS 5.4 Medium2024-11-14
CVE-2024-11215 Path traversal vulnerability in EasyPHP — EasyPHP web server 6.5 Medium2024-11-14
CVE-2024-47916 Boa web server - CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') — Boa web server 0.94.14rc21 7.5 High2024-11-14
CVE-2024-45253 Avigilon – CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') — VideoIQ iCVR HD camera 7.5 High2024-11-14
CVE-2024-2552 PAN-OS: Arbitrary File Delete Vulnerability in the Command Line Interface (CLI) — Cloud NGFW 6.5AIMediumAI2024-11-14
CVE-2024-52291 Craft has a Local File System Validation Bypass Leading to File Overwrite, Sensitive File Access, and Potential Code Execution — cms 8.5 High2024-11-13
CVE-2024-52293 Craft has a Potential Remote Code Execution via missing path normalization & Twig SSTI — cms 7.2 High2024-11-13
CVE-2024-11150 WordPress User Extra Fields <= 16.6 - Unauthenticated Arbitrary File Deletion — WordPress User Extra Fields 9.8 Critical2024-11-13
CVE-2024-10816 LUNA RADIO PLAYER <= 6.24.01.24 - Unauthenticated Arbitrary File Read — LUNA RADIO PLAYER 7.5 High2024-11-13
CVE-2024-32117 Fortinet FortiManager和FortiAnalyzer 路径遍历漏洞 — FortiManager 4.7 Medium2024-11-12
CVE-2024-50336 matrix-js-sdk has insufficient MXC URI validation which allows client-side path traversal — matrix-js-sdk 7.1AIHighAI2024-11-12
CVE-2024-50329 Ivanti Endpoint Manager 安全漏洞 — Endpoint Manager 8.8 High2024-11-12
CVE-2024-50324 Ivanti Endpoint Manager 安全漏洞 — Endpoint Manager 7.2 High2024-11-12
CVE-2024-50322 Ivanti Endpoint Manager 安全漏洞 — Endpoint Manager 7.8 High2024-11-12
CVE-2024-11123 上海灵当信息科技有限公司 Lingdang CRM pdf.php path traversal — Lingdang CRM 4.3 Medium2024-11-12
CVE-2024-50559 Siemens多款产品 路径遍历漏洞 — RUGGEDCOM RM1224 LTE(4G) EU 4.3 Medium2024-11-12
CVE-2024-46888 Siemens SINEC INS 路径遍历漏洞 — SINEC INS 9.9 Critical2024-11-12
CVE-2024-51747 Arbitrary File Read and Delete in kanboard — kanboard 9.1 Critical2024-11-11
CVE-2024-51748 Remote code execution through language setting in kanboard — kanboard 9.1 Critical2024-11-11
CVE-2024-10470 WPLMS Learning Management System for WordPress <= 4.962 - Unauthenticated Arbitrary File Read and Deletion — WPLMS Learning Management System for WordPress, WordPress LMS 9.8 Critical2024-11-09

Vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)) represent 3344 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.