Sign in Sign up
JA · EN · FR
SecPulse

Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Categories
All 🌐 Web Application 🧭 Browser 🖥️ Operating System 📱 Mobile 🛰️ Network Infrastructure ☁️ Cloud / Container 📝 CMS / Site Builder 🗄️ Database / Storage 🔐 Auth / Identity 🔑 Cryptography 🛠️ DevOps / CI-CD 🤖 AI / ML 🔌 IoT / Embedded 🧩 Hardware / Firmware 🏢 Enterprise SaaS 🧰 Developer Tooling ☠️ Malicious Package 📦 Other
Tag groups
All 💬 Programming Languages 22 🧱 Web Frameworks 29 📱 Mobile Platforms 6 🤖 AI/ML Frameworks 11 🖥️ Web Servers 9 🗄️ Databases 13 📝 CMS 9 ☁️ Cloud Platforms 11 📦 Container Tech 12 🖥️ Operating Systems 15 ⚔️ Attack Types 25 🧬 CWE 185 🏢 Vendors 581 📦 Products 666 🌳 Package Ecosystems 24 🛠️ DevOps Tools 17 📡 Protocols 15
Popular tags (Top 40)
Rootio Linux419 Microsoft386 C237 Java183 Jre178 Java Min178 Bitnami178 Windows177 Rootdebian11175 Rootdebian12151 Linux130 Cwe 20125 Cwe 78120 Linux Kernel106 Cwe 787105 Apple99 Cwe 41699 Cwe 2296 Rootdebian1393 Cwe 11990 Cisco89 Denial of Service85 Cwe 9484 Multiple Products79 Adobe78 Google77 Cwe 50270 Cwe 7966 Cwe 8954 Apache47 Cwe 91844 Cwe 28443 Oracle42 Cwe 28741 JavaScript41 PHP41 Cwe 7740 Chromium V838 Cwe 30638 Cwe 84337
Filtering: Tag: cwe-22 Clear
ID Title
CVE-2026-42351 Path Traversal in CVE-2026-42351 (CVE-2026-42351)
path traversal in CVE-2026-42351 (CVE-2026-42351). Confidential information can be exposed externally.
CVE-2026-42213 Path Traversal in CVE-2026-42213 (CVE-2026-42213)
path traversal in CVE-2026-42213 (CVE-2026-42213). Risk of unauthorized operations or information disclosure.
CVE-2026-7807 Path Traversal in CVE-2026-7807 (CVE-2026-7807)
path traversal in CVE-2026-7807 (CVE-2026-7807). Successful exploitation can lead to full system takeover.
CVE-2026-42028 Path Traversal in path-traversal (CVE-2026-42028)
path traversal in path-traversal (CVE-2026-42028). Risk of unauthorized operations or information disclosure.
CVE-2026-41887 Path Traversal in CVE-2026-41887 (CVE-2026-41887)
path traversal in CVE-2026-41887 (CVE-2026-41887). Confidential information can be exposed externally.
CVE-2026-38360 Path Traversal in path-traversal (CVE-2026-38360)
path traversal in path-traversal (CVE-2026-38360). Successful exploitation can lead to full system takeover.
CVE-2026-42353 Path Traversal in express (CVE-2026-42353)
path traversal in express (CVE-2026-42353). Confidential information can be exposed externally.
CVE-2026-41885 Path Traversal in CVE-2026-41885 (CVE-2026-41885)
path traversal in CVE-2026-41885 (CVE-2026-41885). Risk of unauthorized operations or information disclosure.
CVE-2026-41693 Path Traversal in CVE-2026-41693 (CVE-2026-41693)
path traversal in CVE-2026-41693 (CVE-2026-41693). Confidential information can be exposed externally.
CVE-2026-41690 Path Traversal in express (CVE-2026-41690)
path traversal in express (CVE-2026-41690). Data can be tampered with by attackers.
CVE-2026-44340 Path Traversal in praison (CVE-2026-44340)
path traversal in praison (CVE-2026-44340). Data can be tampered with by attackers.
CVE-2026-44336 Vulnerability in praison (CVE-2026-44336)
vulnerability in praison (CVE-2026-44336). Successful exploitation can lead to full system takeover. Exploitable via ``praisonai.rules.create``.
CVE-2026-41491 Path Traversal in path-traversal (CVE-2026-41491)
path traversal in path-traversal (CVE-2026-41491). Confidential information can be exposed externally.
CVE-2026-41493 Path Traversal in path-traversal (CVE-2026-41493)
path traversal in path-traversal (CVE-2026-41493). Risk of unauthorized operations or information disclosure.
CVE-2026-8069 Path Traversal in privilege-escalation (CVE-2026-8069)
path traversal in privilege-escalation (CVE-2026-8069). Risk of unauthorized operations or information disclosure.
CVE-2026-44298 Path Traversal in kimai/kimai (CVE-2026-44298)
path traversal in kimai/kimai (CVE-2026-44298). Risk of unauthorized operations or information disclosure. Exploitable via ``ROLE_SYSTE_ADMIN``. Mitigation: upgrade to `2.56` or later.
CVE-2026-43940 Path Traversal in electerm (CVE-2026-43940)
path traversal in electerm (CVE-2026-43940). Successful exploitation can lead to full system takeover. Exploitable via ``runWidget``. Mitigation: upgrade to `3.7.16` or later.
CVE-2026-42275 Path Traversal in path-traversal (CVE-2026-42275)
path traversal in path-traversal (CVE-2026-42275). Confidential information can be exposed externally.
CVE-2026-8116 Path Traversal in path-traversal (CVE-2026-8116)
path traversal in path-traversal (CVE-2026-8116). Risk of unauthorized operations or information disclosure.
CVE-2026-8115 Path Traversal in path-traversal (CVE-2026-8115)
path traversal in path-traversal (CVE-2026-8115). Risk of unauthorized operations or information disclosure.
CVE-2026-8113 Path Traversal in path-traversal (CVE-2026-8113)
path traversal in path-traversal (CVE-2026-8113). Risk of unauthorized operations or information disclosure.
CVE-2026-41691 Path Traversal in path-traversal (CVE-2026-41691)
path traversal in path-traversal (CVE-2026-41691). Risk of unauthorized operations or information disclosure.
CVE-2026-43117 Vulnerability in linux (CVE-2026-43117)
vulnerability in linux (CVE-2026-43117). Confidential information can be exposed externally.
CVE-2026-35397 Path Traversal in jupyter-server (CVE-2026-35397)
path traversal in jupyter-server (CVE-2026-35397). Confidential information can be exposed externally. Exploitable via ``root_dir``. Mitigation: upgrade to `2.18.0` or later.
CVE-2026-43067 Vulnerability in linux (CVE-2026-43067)
vulnerability in linux (CVE-2026-43067). Successful exploitation can lead to full system takeover.
CVE-2024-1708 KEV [KEV] Path Traversal in Connectwise screenconnect (CVE-2024-1708)
path traversal in Connectwise screenconnect (CVE-2024-1708). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-7399 KEV [KEV] Path Traversal in Samsung magicinfo-9-server (CVE-2024-7399)
path traversal in Samsung magicinfo-9-server (CVE-2024-7399). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-57728 KEV [KEV] Path Traversal in Simplehelp path-traversal (CVE-2024-57728)
path traversal in Simplehelp path-traversal (CVE-2024-57728). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-2749 KEV [KEV] Path Traversal in Kentico path-traversal (CVE-2025-2749)
path traversal in Kentico path-traversal (CVE-2025-2749). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-8110 KEV [KEV] Path Traversal in gogs (CVE-2025-8110)
path traversal in gogs (CVE-2025-8110). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-6218 KEV [KEV] Path Traversal in Rarlab winrar (CVE-2025-6218)
path traversal in Rarlab winrar (CVE-2025-6218). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-43798 KEV [KEV] Path Traversal in Grafana labs grafana-labs (CVE-2021-43798)
path traversal in Grafana labs grafana-labs (CVE-2021-43798). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-5418 KEV [KEV] Path Traversal in rails (CVE-2019-5418)
path traversal in rails (CVE-2019-5418). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-0769 KEV [KEV] Path Traversal in D-link dir-859-router (CVE-2024-0769)
path traversal in D-link dir-859-router (CVE-2024-0769). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-4632 KEV [KEV] Path Traversal in Samsung magicinfo-9-server (CVE-2025-4632)
path traversal in Samsung magicinfo-9-server (CVE-2025-4632). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-38950 KEV [KEV] Path Traversal in Zkteco biotime (CVE-2023-38950)
path traversal in Zkteco biotime (CVE-2023-38950). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-27920 KEV [KEV] Path Traversal in Srimax output-messenger (CVE-2025-27920)
path traversal in Srimax output-messenger (CVE-2025-27920). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-34028 KEV [KEV] Path Traversal in Commvault command-center (CVE-2025-34028)
path traversal in Commvault command-center (CVE-2025-34028). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-12637 KEV [KEV] Path Traversal in Sap netweaver (CVE-2017-12637)
path traversal in Sap netweaver (CVE-2017-12637). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-4885 KEV [KEV] Path Traversal in Progress whatsup-gold (CVE-2024-4885)
path traversal in Progress whatsup-gold (CVE-2024-4885). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-57727 KEV [KEV] Path Traversal in simplehelp (CVE-2024-57727)
path traversal in simplehelp (CVE-2024-57727). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-41713 KEV [KEV] Path Traversal in Mitel micollab (CVE-2024-41713)
path traversal in Mitel micollab (CVE-2024-41713). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-55550 KEV [KEV] Path Traversal in Mitel micollab (CVE-2024-55550)
path traversal in Mitel micollab (CVE-2024-55550). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-11667 KEV [KEV] Path Traversal in Zyxel multiple-firewalls (CVE-2024-11667)
path traversal in Zyxel multiple-firewalls (CVE-2024-11667). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-26086 KEV [KEV] Path Traversal in Atlassian jira-server-and-data-center (CVE-2021-26086)
path traversal in Atlassian jira-server-and-data-center (CVE-2021-26086). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-16278 KEV [KEV] Path Traversal in Nostromo nhttpd (CVE-2019-16278)
path traversal in Nostromo nhttpd (CVE-2019-16278). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-8963 KEV [KEV] Path Traversal in Ivanti cloud-services-appliance-csa (CVE-2024-8963)
path traversal in Ivanti cloud-services-appliance-csa (CVE-2024-8963). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20124 KEV [KEV] Path Traversal in Draytek vigorconnect (CVE-2021-20124)
path traversal in Draytek vigorconnect (CVE-2021-20124). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20123 KEV [KEV] Path Traversal in Draytek vigorconnect (CVE-2021-20123)
path traversal in Draytek vigorconnect (CVE-2021-20123). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-7262 KEV [KEV] Path Traversal in Kingsoft wps-office (CVE-2024-7262)
path traversal in Kingsoft wps-office (CVE-2024-7262). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →