Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-22 (对路径名的限制不恰当(路径遍历)) — Vulnerability Class 3346

3346 vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-23475 SolarWinds Access Rights Manager Directory Traversal and Information Disclosure Vulnerability — Access Rights Manager 9.6 Critical2024-07-17
CVE-2024-23472 SolarWinds Access Rights Manager Directory Traversal Arbitrary File Deletion and Information Disclosure Vulnerability — Access Rights Manager 9.6 Critical2024-07-17
CVE-2024-28993 SolarWinds Access Rights Manager Directory Traversal and Information Disclosure Vulnerability — Access Rights Manager 7.6 High2024-07-17
CVE-2024-23468 SolarWinds Access Rights Manager Directory Traversal and Information Disclosure Vulnerability — Access Rights Manager 7.6 High2024-07-17
CVE-2024-23474 SolarWinds Access Rights Manager (ARM) deleteTransferFile Directory Traversal Arbitrary File Deletion and Information Disclosure Vulnerability — Access Rights Manager 7.6 High2024-07-17
CVE-2024-5852 WordPress File Upload <= 4.24.7 - Authenticated (Contributor+) Directory Traversal — Iptanus File Upload 4.3 Medium2024-07-16
CVE-2024-39918 Path Traveral in @jmondi/url-to-png — url-to-png 4.3 Medium2024-07-15
CVE-2024-39741 IBM Datacap Navigator directory traversal — Datacap Navigator 4.3 Medium2024-07-15
CVE-2024-38717 WordPress Booking Ultra Pro Appointments Booking Calendar plugin <= 1.1.13 - Local File Inclusion vulnerability — Booking Ultra Pro 7.1 High2024-07-12
CVE-2024-38716 WordPress Events Calendar for Google plugin <= 2.1.0 - Local File Inclusion vulnerability — Events Calendar for Google 6.5 Medium2024-07-12
CVE-2024-39903 Local File Inclusion in Solara — solara 8.6 High2024-07-12
CVE-2024-38715 WordPress ExS Widgets plugin <= 0.3.1 - Local File Inclusion vulnerability — ExS Widgets 6.5 Medium2024-07-12
CVE-2024-38709 WordPress GD Rating System plugin <= 3.6 - Local File Inclusion vulnerability — GD Rating System 5.3 Medium2024-07-12
CVE-2024-38704 WordPress Team Manager plugin <= 2.1.12 - Local File Inclusion vulnerability — WordPress Team Manager 6.5 Medium2024-07-12
CVE-2024-37932 WordPress Woocommerce OpenPos plugin <= 6.4.4 - Unauthenticated Arbitrary File Deletion vulnerability — Woocommerce OpenPos 8.6 High2024-07-12
CVE-2024-37928 WordPress Jobmonster theme <= 4.7.0 - Unauthenticated Arbitrary File Deletion vulnerability — Jobmonster 8.6 High2024-07-12
CVE-2024-2602 Schneider Electric FoxRTU Station 路径遍历漏洞 — FoxRTU Station 7.3 High2024-07-11
CVE-2024-22377 PingFederate Runtime Node Path Traversal — PingFederate 5.3 Medium2024-07-09
CVE-2024-37513 WordPress WPCafe plugin <= 2.2.27 - Local File Inclusion vulnerability — WPCafe 8.5 High2024-07-09
CVE-2024-37501 WordPress Advanced Classifieds & Directory Pro plugin <= 3.1.3 - Local File Inclusion vulnerability — Advanced Classifieds & Directory Pro 8.5 High2024-07-09
CVE-2024-37499 WordPress Online Booking & Scheduling Calendar for WordPress plugin <= 4.4.2 - Local File Inclusion vulnerability — Online Booking & Scheduling Calendar for WordPress by vcita 6.5 Medium2024-07-09
CVE-2024-37497 WordPress JetThemeCore plugin < 2.2.1 - Subscriber+ Arbitrary File Deletion vulnerability — JetThemeCore 7.7 High2024-07-09
CVE-2024-37464 WordPress Beaver Builder Addons by WPZOOM plugin <= 1.3.5 - Local File Inclusion vulnerability — Beaver Builder Addons by WPZOOM 4.9 Medium2024-07-09
CVE-2024-37462 WordPress Ultimate Bootstrap Elements for Elementor plugin <= 1.4.2 - Local File Inclusion vulnerability — Ultimate Bootstrap Elements for Elementor 8.5 High2024-07-09
CVE-2024-37454 WordPress AWSM Team – Team Showcase Plugin plugin <= 1.3.1 - Local File Inclusion vulnerability — AWSM Team 6.5 Medium2024-07-09
CVE-2024-37419 WordPress Cowidgets – Elementor Addons plugin <= 1.1.1 - Local File Inclusion vulnerability — Cowidgets – Elementor Addons 7.5 High2024-07-09
CVE-2024-37268 WordPress Striking theme <= 2.3.4 - Local File Inclusion vulnerability — Striking 8.5 High2024-07-09
CVE-2024-37266 WordPress Tutor LMS plugin <= 2.7.1 - Path Traversal vulnerability — Tutor LMS 4.9 Medium2024-07-09
CVE-2024-37224 WordPress SP Project & Document Manager plugin <= 4.71 - Directory Traversal vulnerability — SP Project & Document Manager 7.5 High2024-07-09
CVE-2024-5456 Panda Video <= 1.4.0 - Authenticated (Contributor+) Local File Inclusion — Panda Video 8.8 High2024-07-09

Vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)) represent 3346 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.