Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-22 (对路径名的限制不恰当(路径遍历)) — Vulnerability Class 3344

3344 vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-35216 ITPison OMICARD EDM - Use of Hard-coded Credentials — OMICARD EDM 7.5 High2022-08-04
CVE-2022-32963 ITPison OMICARD EDM - Path Traversal-1 — OMICARD EDM 7.5 High2022-08-04
CVE-2022-27621 Synology USB Copy 路径遍历漏洞 — USB Copy 5.5 Medium2022-08-03
CVE-2022-27620 Synology SSO Server 路径遍历漏洞 — SSO Server 6.8 Medium2022-08-03
CVE-2022-27618 Synology Storage Analyzer 路径遍历漏洞 — Storage Analyzer 6.8 Medium2022-08-03
CVE-2022-27617 Synology Calendar 路径遍历漏洞 — Synology Calendar 5.0 Medium2022-08-03
CVE-2022-35920 Improper Limitation of a Pathname to a Restricted Directory in sanic — sanic 8.3 High2022-08-01
CVE-2022-35918 Streamlit directory traversal vulnerability — streamlit 6.5 Medium2022-08-01
CVE-2022-31195 Path traversal vulnerability in Simple Archive Format package import in DSpace — DSpace 7.2 High2022-08-01
CVE-2022-31194 Path traversal vulnerabilities in DSpace JSPUI submission upload — DSpace 8.2 High2022-08-01
CVE-2022-2184 CAPTCHA 4WP < 7.1.0 - Local File Inclusion via CSRF — CAPTCHA 4WP 8.8 -2022-08-01
CVE-2022-35919 Authenticated requests for server update admin API allows path traversal in minio — minio 7.4 High2022-08-01
CVE-2022-27611 Synology Audio Station 路径遍历漏洞 — Audio Station 5.4 Medium2022-07-28
CVE-2022-22685 Synology WebDAV Server 路径遍历漏洞 — WebDAV Server 8.7 High2022-07-28
CVE-2022-27615 Synology DNS Server 路径遍历漏洞 — DNS Server 7.7 High2022-07-28
CVE-2022-27610 Synology DiskStation Manager 路径遍历漏洞 — DiskStation Manager (DSM) 6.5 Medium2022-07-27
CVE-2022-35650 Moodle 输入验证错误漏洞 — Moodle 7.5 -2022-07-25
CVE-2017-20145 Tecrail Responsive Filemanger path traversal — Responsive Filemanger 6.3 Medium2022-07-25
CVE-2022-0902 ABB Flow Computer and Remote Controllers Path Traversal Vulnerability in Totalflow TCP protocol can lead to root access — RMC-100 (Standard) 8.1 High2022-07-21
CVE-2022-31163 TZInfo relative path traversal vulnerability allows loading of arbitrary files — tzinfo 7.5 High2022-07-21
CVE-2022-29834 ICONICS GENESIS64 路径遍历漏洞 — GENESIS64 7.5 High2022-07-20
CVE-2022-1264 Inductive Automation Ignition — Ignition 6.8 Medium2022-07-20
CVE-2022-2030 Zyxel USG FLEX 路径遍历漏洞 — USG FLEX 100(W) firmware 6.5 Medium2022-07-19
CVE-2022-31159 Partial Path Traversal in com.amazonaws:aws-java-sdk-s3 — aws-sdk-java 7.9 High2022-07-15
CVE-2022-34762 多款Schneider Electric产品路径遍历漏洞 — OPC UA Modicon Communication Module 5.9 Medium2022-07-13
CVE-2017-20105 Simplessus path traversal — Simplessus 5.4 Medium2022-06-28
CVE-2017-20102 Album Lock getImage path traversal — Album Lock 4.4 Medium2022-06-27
CVE-2022-1953 Product Configurator for WooCommerce < 1.2.32 - Unauthenticated Arbitrary File Deletion — Product Configurator for WooCommerce 9.1 -2022-06-27
CVE-2022-2119 OFFIS DCMTK Path Traversal — DCMTK 7.5 High2022-06-24
CVE-2013-1891 OpenCart 路径遍历漏洞 — opencart 9.1 -2022-06-24

Vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)) represent 3344 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.