CWE-22 对路径名的限制不恰当(路径遍历) 类弱点 3353 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-39473 | WordPress plugin Seofy Core 路径遍历漏洞 — Seofy Core | 8.1 | High | 2025-06-09 |
| CVE-2025-47511 | WordPress plugin Welcart e-Commerce 路径遍历漏洞 — Welcart e-Commerce | 6.8 | Medium | 2025-06-09 |
| CVE-2025-48124 | WordPress plugin Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light 路径遍历漏洞 — Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light | 7.5 | High | 2025-06-09 |
| CVE-2025-48130 | WordPress plugin Spice Blocks 路径遍历漏洞 — Spice Blocks | 7.5 | High | 2025-06-09 |
| CVE-2025-48267 | WordPress plugin WP Pipes 路径遍历漏洞 — WP Pipes | 8.6 | High | 2025-06-09 |
| CVE-2025-5880 | whistle 路径遍历漏洞 — Whistle | 4.3 | Medium | 2025-06-09 |
| CVE-2025-3485 | Allegra 路径遍历漏洞 — Allegra | 8.8AI | HighAI | 2025-06-06 |
| CVE-2025-33035 | QNAP File Station 5 路径遍历漏洞 — File Station 5 | 6.5AI | MediumAI | 2025-06-06 |
| CVE-2025-5714 | iSoluçõesWEB SoluçõesCoop 路径遍历漏洞 — iSoluçõesWEB | 4.3 | Medium | 2025-06-06 |
| CVE-2025-3055 | WordPress plugin WP User Frontend Pro 路径遍历漏洞 — WP User Frontend Pro | 8.1 | High | 2025-06-05 |
| CVE-2025-20259 | Cisco ThousandEyes Endpoint Agent 路径遍历漏洞 — Cisco ThousandEyes Endpoint Agent | 5.3 | Medium | 2025-06-04 |
| CVE-2025-20277 | Cisco Unified CCX 路径遍历漏洞 — Cisco Unified Contact Center Express | 3.4 | Low | 2025-06-04 |
| CVE-2025-5545 | oa_system 路径遍历漏洞 — oa_system | 4.3 | Medium | 2025-06-03 |
| CVE-2025-5544 | oa_system 路径遍历漏洞 — oa_system | 4.3 | Medium | 2025-06-03 |
| CVE-2025-5509 | shiyi-blog 安全漏洞 — shiyi-blog | 6.3 | Medium | 2025-06-03 |
| CVE-2024-12718 | Python 安全漏洞 — CPython | 5.3 | Medium | 2025-06-03 |
| CVE-2025-4138 | Python 安全漏洞 — CPython | 7.5 | High | 2025-06-03 |
| CVE-2025-4330 | Python 安全漏洞 — CPython | 7.5 | High | 2025-06-03 |
| CVE-2025-4517 | Python 安全漏洞 — CPython | 9.4 | Critical | 2025-06-03 |
| CVE-2025-31359 | Parallels Desktop 安全漏洞 — Parallels Desktop for Mac | 8.8 | High | 2025-06-03 |
| CVE-2025-41428 | Keiyo System TimeWorks 路径遍历漏洞 — TimeWorks | 5.3AI | MediumAI | 2025-06-03 |
| CVE-2025-48387 | tar-fs 路径遍历漏洞 — tar-fs | 6.5 | - | 2025-06-02 |
| CVE-2025-48940 | MyBB 路径遍历漏洞 — mybb | 7.2 | High | 2025-06-02 |
| CVE-2025-33004 | IBM Planning Analytics Local 路径遍历漏洞 — Planning Analytics Local | 6.5 | Medium | 2025-06-01 |
| CVE-2025-5385 | JeeWMS 路径遍历漏洞 — JeeWMS | 6.3 | Medium | 2025-05-31 |
| CVE-2025-5381 | Yifang CMS 安全漏洞 — CMS | 2.7 | Low | 2025-05-31 |
| CVE-2025-5380 | XueShengZhuSu 安全漏洞 — XueShengZhuSu 学生住宿管理系统 | 6.3 | Medium | 2025-05-31 |
| CVE-2025-4857 | WordPress plugin Newsletters 路径遍历漏洞 — Newsletters | 7.2 | High | 2025-05-31 |
| CVE-2025-47952 | Traefik 路径遍历漏洞 — traefik | 9.1AI | CriticalAI | 2025-05-30 |
| CVE-2025-5328 | mccms 路径遍历漏洞 — mccms | 5.4 | Medium | 2025-05-29 |
CWE-22(对路径名的限制不恰当(路径遍历)) 是常见的弱点类别,本平台收录该类弱点关联的 3353 条 CVE 漏洞。