CWE-22 对路径名的限制不恰当(路径遍历) 类弱点 3352 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-10708 | Four-Faith Water Conservancy Informatization 安全漏洞 — Water Conservancy Informatization Platform | 5.3 | Medium | 2025-09-19 |
| CVE-2025-10468 | Beyaz Computer CityPlus 路径遍历漏洞 — CityPlus | 7.5 | High | 2025-09-19 |
| CVE-2025-59414 | Nuxt 路径遍历漏洞 — nuxt | 3.1 | Low | 2025-09-17 |
| CVE-2025-35430 | CISA Thorium 安全漏洞 — Thorium | 5.0 | Medium | 2025-09-17 |
| CVE-2025-9215 | WordPress plugin StoreEngine 路径遍历漏洞 — StoreEngine — Complete eCommerce Solution with Memberships, Licensing, Affiliates & More | 6.5 | Medium | 2025-09-17 |
| CVE-2025-10050 | WordPress plugin Developer Loggers for Simple History 路径遍历漏洞 — Developer Loggers for Simple History | 6.6 | Medium | 2025-09-17 |
| CVE-2025-59336 | Luanox 安全漏洞 — luanox | 9.1AI | CriticalAI | 2025-09-16 |
| CVE-2025-59056 | FreePBX 路径遍历漏洞 — framework | 3.8AI | LowAI | 2025-09-15 |
| CVE-2025-10472 | MoneyPrinterTurbo 路径遍历漏洞 — MoneyPrinterTurbo | 5.3 | Medium | 2025-09-15 |
| CVE-2025-10176 | WordPress plugin The Hack Repair Guy s Plugin Archiver 路径遍历漏洞 — The Hack Repair Guy's Plugin Archiver | 7.2 | High | 2025-09-12 |
| CVE-2025-10273 | erjinzhi 10OA 安全漏洞 — 10OA | 3.5 | Low | 2025-09-11 |
| CVE-2025-58320 | Delta Electronics DIALink 安全漏洞 — DIALink | 7.3 | High | 2025-09-11 |
| CVE-2025-58321 | Delta Electronics DIALink 安全漏洞 — DIALink | 10.0 | Critical | 2025-09-11 |
| CVE-2025-9918 | Google SecOps SOAR Server 安全漏洞 — Google SecOps SOAR | 8.8AI | HighAI | 2025-09-11 |
| CVE-2025-9693 | WordPress plugin User Meta 路径遍历漏洞 — User Meta – User Profile Builder and User management plugin | 8.0 | High | 2025-09-11 |
| CVE-2025-10245 | Display Painéis TGA 路径遍历漏洞 — TGA | 4.3 | Medium | 2025-09-11 |
| CVE-2025-10236 | GPT Academic 路径遍历漏洞 — gpt_academic | 4.3 | Medium | 2025-09-11 |
| CVE-2025-10233 | kodbox 路径遍历漏洞 — kodbox | 6.3 | Medium | 2025-09-10 |
| CVE-2025-10232 | 299Ko 路径遍历漏洞 — 299ko | 5.4 | Medium | 2025-09-10 |
| CVE-2025-41714 | Welotec SmartEMS Web Application 路径遍历漏洞 — SmartEMS Web Application | 8.8 | High | 2025-09-10 |
| CVE-2025-23343 | NVIDIA NVDebug 路径遍历漏洞 — NVDebug tool | 7.6 | High | 2025-09-09 |
| CVE-2025-34176 | Netgate pfSense CE 安全漏洞 — pfSense CE | 4.3AI | MediumAI | 2025-09-09 |
| CVE-2025-34173 | Netgate pfSense CE 安全漏洞 — pfSense CE | 4.3AI | MediumAI | 2025-09-09 |
| CVE-2025-47415 | CRESTRON TOUCHSCREENS x70 安全漏洞 — TOUCHSCREENS x60, x70 series | 7.5AI | HighAI | 2025-09-09 |
| CVE-2025-54261 | Adobe ColdFusion 路径遍历漏洞 — ColdFusion | 10.0 | Critical | 2025-09-09 |
| CVE-2025-58755 | MONAI 路径遍历漏洞 — MONAI | 8.8 | High | 2025-09-08 |
| CVE-2025-58751 | Vite 访问控制错误漏洞 — vite | 5.3AI | MediumAI | 2025-09-08 |
| CVE-2025-5993 | ITCube CRM 路径遍历漏洞 — ITCube CRM | 7.5AI | HighAI | 2025-09-08 |
| CVE-2025-58438 | internetarchive 路径遍历漏洞 — internetarchive | 8.8AI | HighAI | 2025-09-06 |
| CVE-2025-9566 | Podman 路径遍历漏洞 | 8.1 | High | 2025-09-05 |
CWE-22(对路径名的限制不恰当(路径遍历)) 是常见的弱点类别,本平台收录该类弱点关联的 3352 条 CVE 漏洞。