Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-22 (对路径名的限制不恰当(路径遍历)) — Vulnerability Class 3352

3352 vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-45074 IBM webMethods Integration directory traversal — webMethods Integration 6.5 Medium2024-09-04
CVE-2024-8410 ABCD ABCD2 otros_sitios.php path traversal — ABCD2 4.3 Medium2024-09-04
CVE-2024-8104 The Ultimate WordPress Toolkit – WP Extended <= 3.0.8 - Directory Traversal to Authenticated (Subscriber+) Arbitrary File Download — The Ultimate WordPress Toolkit – WP Extended 8.8 High2024-09-04
CVE-2024-7950 WP Job Portal <= 2.1.6 - Missing Authorization to Unauthenticated Local File Inclusion, Arbitrary Settings Update, and User Creation — WP Job Portal – AI-Powered Recruitment System for Company or Job Board website 9.8 Critical2024-09-04
CVE-2024-45443 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.1 Medium2024-09-04
CVE-2024-43797 Path Traversal in audiobookshelf — audiobookshelf 6.3 Medium2024-09-02
CVE-2024-42471 Arbitrary File Write via artifact extraction in actions/artifact — toolkit 7.3 High2024-09-02
CVE-2024-43957 WordPress Animated Number Counters plugin <= 1.9 - Editor+ Limited Local File Inclusion vulnerability — Animated Number Counters 6.5 Medium2024-08-29
CVE-2024-43955 WordPress Droip plugin <= 1.1.1 - Unauthenticated Arbitrary File Download/Deletion vulnerability — Droip 10.0 Critical2024-08-29
CVE-2024-8304 jpress Template Module edit path traversal — jpress 4.7 Medium2024-08-29
CVE-2024-7744 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Progress WS_FTP Server — WS_FTP Server 6.5 Medium2024-08-28
CVE-2024-6312 Funnelforms Free <= 3.7.3.2 - Authenticated (Administrator+) Arbitrary File Deletion — Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free 6.5 Medium2024-08-28
CVE-2024-4556 Directory traversal vulnerability in NetIQ Access Manager — NetIQ Access Manager 5.7 Medium2024-08-28
CVE-2024-3980 Hitachi Energy MicroSCADA X SYS600 安全漏洞 — MicroSCADA X SYS600 8.8 High2024-08-27
CVE-2024-6789 Path traversal in M-Files API — M-Files Server 6.5AIMediumAI2024-08-27
CVE-2024-8165 Chengdu Everbrite Network Technology BeikeShop export exportZip path traversal — BeikeShop 4.3 Medium2024-08-26
CVE-2024-8163 Chengdu Everbrite Network Technology BeikeShop files destroyFiles path traversal — BeikeShop 5.4 Medium2024-08-26
CVE-2024-45189 Mage AI git content request remote arbitrary file leak 6.5 Medium2024-08-23
CVE-2024-45188 Mage AI file content request remote arbitrary file leak 6.5 Medium2024-08-23
CVE-2023-7260 A path traversal vulnerability has been discovered in OpenText™ CX-E Voice. — CX-E Voice 7.5AIHighAI2024-08-22
CVE-2024-7634 NGINX Agent Vulnerability — NGINX Agent 4.9 Medium2024-08-22
CVE-2024-6141 Windscribe Directory Traversal Local Privilege Escalation Vulnerability — Windscribe 7.8AIHighAI2024-08-21
CVE-2024-7603 Logsign Unified SecOps Platform Directory Traversal Arbitrary Directory Deletion Vulnerability — Unified SecOps Platform 8.1AIHighAI2024-08-21
CVE-2024-7602 Logsign Unified SecOps Platform Directory Traversal Information Disclosure Vulnerability — Unified SecOps Platform 6.5AIMediumAI2024-08-21
CVE-2024-7601 Logsign Unified SecOps Platform Directory data_export_delete_all Traversal Arbitrary File Deletion Vulnerability — Unified SecOps Platform 8.1AIHighAI2024-08-21
CVE-2024-7600 Logsign Unified SecOps Platform Directory Traversal Arbitrary File Deletion Vulnerability — Unified SecOps Platform 8.1AIHighAI2024-08-21
CVE-2024-7782 Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 2.0 - 2.13.4 - Authenticater (Administrator+) Arbitrary File Deletion — Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 8.7 High2024-08-20
CVE-2024-7777 Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 2.0 - 2.13.9 - Authenticated (Administrator+) Arbitrary File Read And Deletion — Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 9.0 Critical2024-08-20
CVE-2024-7928 FastAdmin lang path traversal — FastAdmin 4.3 Medium2024-08-19
CVE-2024-7927 ZZCMS class.php path traversal — ZZCMS 7.3 High2024-08-19

Vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)) represent 3352 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.