CWE-22 对路径名的限制不恰当(路径遍历) 类弱点 3352 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-11746 | WordPress plugin XStore 路径遍历漏洞 — XStore | 8.8 | High | 2025-10-15 |
| CVE-2024-13991 | HuiJieTong Cloud Video Platform 安全漏洞 — Cloud Video Platform | 7.5AI | HighAI | 2025-10-15 |
| CVE-2025-62156 | Argo Workflows 路径遍历漏洞 — argo-workflows | 8.1 | High | 2025-10-14 |
| CVE-2025-10986 | Ivanti EPMM 路径遍历漏洞 — Endpoint Manager Mobile | 4.7 | Medium | 2025-10-14 |
| CVE-2025-42906 | SAP Commerce Cloud 路径遍历漏洞 — SAP Commerce Cloud | 5.3 | Medium | 2025-10-14 |
| CVE-2025-9713 | Ivanti Endpoint Manager 路径遍历漏洞 — Endpoint Manager | 8.8 | High | 2025-10-13 |
| CVE-2025-11631 | MxsDoc 路径遍历漏洞 — DocSys | 5.4 | Medium | 2025-10-12 |
| CVE-2025-11630 | MxsDoc 路径遍历漏洞 — DocSys | 6.3 | Medium | 2025-10-12 |
| CVE-2025-11607 | MoneyPrinterTurbo 路径遍历漏洞 — MoneyPrinterTurbo | 6.3 | Medium | 2025-10-11 |
| CVE-2025-9950 | WordPress plugin Error Log Viewer by BestWebSoft 路径遍历漏洞 — Error Log Viewer by BestWebSoft | 4.9 | Medium | 2025-10-11 |
| CVE-2025-6439 | WordPress plugin WooCommerce Designer Pro 路径遍历漏洞 — WooCommerce Designer Pro | 9.8 | Critical | 2025-10-11 |
| CVE-2025-34248 | D-Link Nuclias Connect 安全漏洞 — Nuclias Connect | 8.1AI | HighAI | 2025-10-09 |
| CVE-2025-35056 | Newforma Project Center Server 安全漏洞 — Project Center | 5.0 | Medium | 2025-10-09 |
| CVE-2025-35055 | Newforma Project Center Server 安全漏洞 — Project Center | 8.8 | High | 2025-10-09 |
| CVE-2025-35053 | Newforma Project Center Server 安全漏洞 — Project Center | 6.4 | Medium | 2025-10-09 |
| CVE-2025-10284 | BBOT 安全漏洞 — bbot | 9.6 | Critical | 2025-10-09 |
| CVE-2025-10283 | BBOT 安全漏洞 — bbot | 9.6 | Critical | 2025-10-09 |
| CVE-2025-39664 | Checkmk 安全漏洞 — Checkmk | 4.3AI | MediumAI | 2025-10-09 |
| CVE-2025-7526 | WordPress plugin WP Travel Engine 路径遍历漏洞 — WP Travel Engine – Tour Booking Plugin – Tour Operator Software | 9.8 | Critical | 2025-10-09 |
| CVE-2025-61913 | Flowise 路径遍历漏洞 — Flowise | 10.0 | Critical | 2025-10-08 |
| CVE-2025-61784 | LLaMA-Factory 安全漏洞 — LLaMA-Factory | 7.6 | High | 2025-10-07 |
| CVE-2025-43889 | Dell PowerProtect Data Domain 路径遍历漏洞 — PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release | 5.3 | Medium | 2025-10-07 |
| CVE-2025-43934 | Dell PowerProtect Data Domain 路径遍历漏洞 — PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release | 6.0 | Medium | 2025-10-07 |
| CVE-2025-40889 | Nozomi Networks Guardian和Nozomi Networks CMC 路径遍历漏洞 — Guardian | 8.1 | High | 2025-10-07 |
| CVE-2025-3718 | Nozomi Networks CMC 路径遍历漏洞 — Guardian | 7.9 | High | 2025-10-07 |
| CVE-2025-11337 | Four-Faith Water Conservancy Informatization Platform 路径遍历漏洞 — Water Conservancy Informatization Platform | 5.3 | Medium | 2025-10-06 |
| CVE-2025-11336 | Four-Faith Water Conservancy Informatization Platform 路径遍历漏洞 — Water Conservancy Informatization Platform | 5.3 | Medium | 2025-10-06 |
| CVE-2025-58591 | SICK AG Baggage Analytics 安全漏洞 — Baggage Analytics | 6.5 | Medium | 2025-10-06 |
| CVE-2025-58590 | SICK AG Baggage Analytics 安全漏洞 — Baggage Analytics | 6.5 | Medium | 2025-10-06 |
| CVE-2025-8917 | clearml 安全漏洞 — allegroai/clearml | 9.8AI | CriticalAI | 2025-10-05 |
CWE-22(对路径名的限制不恰当(路径遍历)) 是常见的弱点类别,本平台收录该类弱点关联的 3352 条 CVE 漏洞。