CWE-22 对路径名的限制不恰当(路径遍历) 类弱点 3352 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-55011 | Kanboard 安全漏洞 — kanboard | 6.4 | Medium | 2025-08-12 |
| CVE-2025-8081 | WordPress plugin Elementor 路径遍历漏洞 — Elementor Website Builder – more than just a page builder | 4.9 | Medium | 2025-08-12 |
| CVE-2025-5391 | WordPress plugin WooCommerce Purchase Orders 路径遍历漏洞 — Purchase Orders for WooCommerce | 8.1 | High | 2025-08-12 |
| CVE-2025-42946 | SAP S/4HANA 路径遍历漏洞 — SAP S/4HANA (Bank Communication Management) | 6.9 | Medium | 2025-08-12 |
| CVE-2025-8815 | Morning 路径遍历漏洞 — Morning | 7.3 | High | 2025-08-10 |
| CVE-2025-8753 | litemall 路径遍历漏洞 — litemall | 5.4 | Medium | 2025-08-09 |
| CVE-2025-55149 | TinyScientist 路径遍历漏洞 — tiny-scientist | 7.5 | - | 2025-08-09 |
| CVE-2012-10048 | Zenoss Core 安全漏洞 — Zenoss Core | 8.8 | - | 2025-08-08 |
| CVE-2025-8356 | Xerox FreeFlow Core 安全漏洞 — FreeFlow Core | 9.8 | Critical | 2025-08-08 |
| CVE-2025-8729 | LMeterX 路径遍历漏洞 — LMeterX | 6.3 | Medium | 2025-08-08 |
| CVE-2025-8749 | Mobile Industrial Robots MiR Robots 安全漏洞 — MiR Robots | 6.5 | Medium | 2025-08-08 |
| CVE-2025-54959 | Mubit Powered BLUE 870 路径遍历漏洞 — Powered BLUE 870 | 7.5 | - | 2025-08-08 |
| CVE-2025-29865 | TAGFREE X‑Free Uploader 安全漏洞 — X-Free Uploader | 6.5AI | MediumAI | 2025-08-07 |
| CVE-2025-48394 | Eaton Rack PDU G4 安全漏洞 — G4 PDU | 4.7 | Medium | 2025-08-06 |
| CVE-2025-54653 | Huawei HarmonyOS 安全漏洞 — HarmonyOS | 8.4 | High | 2025-08-06 |
| CVE-2025-54652 | Huawei HarmonyOS 安全漏洞 — HarmonyOS | 8.4 | High | 2025-08-06 |
| CVE-2012-10024 | Kodi Xbmc 安全漏洞 — Media Center | 7.7AI | HighAI | 2025-08-05 |
| CVE-2012-10034 | ClanSphere 安全漏洞 — ClanSphere | 7.5AI | HighAI | 2025-08-05 |
| CVE-2025-54387 | IPX 安全漏洞 — ipx | 6.8AI | MediumAI | 2025-08-05 |
| CVE-2025-54794 | Claude Code 路径遍历漏洞 — claude-code | 9.1AI | CriticalAI | 2025-08-05 |
| CVE-2025-54802 | pyLoad 安全漏洞 — pyload | 9.8 | Critical | 2025-08-05 |
| CVE-2025-8522 | VvvebJs 安全漏洞 — Vvvebjs | 5.0 | Medium | 2025-08-04 |
| CVE-2025-8516 | Kingdee Cloud-Starry-Sky Enterprise Edition 路径遍历漏洞 — Cloud-Starry-Sky Enterprise Edition | 5.3 | Medium | 2025-08-04 |
| CVE-2025-7694 | WordPress plugin Woffice Core 路径遍历漏洞 — Woffice Core | 6.8 | Medium | 2025-08-02 |
| CVE-2025-54386 | Traefik 安全漏洞 — traefik | 9.8 | - | 2025-08-01 |
| CVE-2013-10063 | Netgear SPH200D 安全漏洞 — SPH200D | 6.5 | - | 2025-08-01 |
| CVE-2013-10062 | Linksys E1500 安全漏洞 — E1500 | 6.5 | - | 2025-08-01 |
| CVE-2013-10046 | Agnitum Outpost Internet Security 安全漏洞 — Outpost Internet Security | 8.4 | - | 2025-08-01 |
| CVE-2025-8480 | Alpine iLX-507 路径遍历漏洞 — iLX-507 | 8.8 | - | 2025-08-01 |
| CVE-2025-8433 | Code-Projects Document Management System 路径遍历漏洞 — Document Management System | 5.4 | Medium | 2025-08-01 |
CWE-22(对路径名的限制不恰当(路径遍历)) 是常见的弱点类别,本平台收录该类弱点关联的 3352 条 CVE 漏洞。