Severity High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity ACME mini_httpd arbitrary file read CVE-2018-18778 CWE-23 CWE-23 High Adobe ColdFusion directory traversal CVE-2013-3336 CWE-22 CWE-22 High AjaxControlToolkit directory traversal CVE-2015-4670 CWE-434 CWE-434 High Apache Flink jobmanager/logs Path Traversal CVE-2020-17519 CWE-22 CWE-22 High Apache Tomcat JK connector security bypass CVE-2007-1860 CWE-200 CWE-200 High Apache Tomcat version older than 6.0.10 CVE-2007-0450 CWE-22 CWE-22 Medium Apache Tomcat WAR file directory traversal vulnerability CVE-2009-2693 CVE-2009-2901 CWE-22 CWE-22 Medium Arbitrary File Read in Next.js CWE-22 CWE-22 High Barracuda networks products multiple directory traversal vulnerabilities CWE-22 CWE-22 High Cisco Adaptive Security Appliance (ASA) Path Traversal (CVE-2018-0296) CVE-2018-0296 CWE-22 CWE-22 High Citrix XenMobile Server Path Traversal CVE-2020-8209 CWE-22 CWE-22 High ColdFusion directory traversal CVE-2010-2861 CWE-22 CWE-22 High Directory traversal CWE-22 CWE-22 High Directory Traversal with spring-cloud-config-server CVE-2020-5410 CWE-22 CWE-22 High Drupal Core 7.x Directory Traversal (7.0 - 7.66) CVE-2019-11831 CWE-22 CWE-22 High Drupal Core 7.x Directory Traversal (7.0 - 7.81) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 8.6.x Directory Traversal (8.6.0 - 8.6.15) CVE-2019-11831 CWE-22 CWE-22 High Drupal Core 8.7.0 Directory Traversal (8.7.0 - 8.7.0) CVE-2019-11831 CWE-22 CWE-22 High Drupal Core 8.9.x Directory Traversal (8.9.0 - 8.9.16) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 8.x.x Directory Traversal (8.0.0 - 8.5.15) CVE-2019-11831 CWE-22 CWE-22 High Drupal Core 8.x.x Directory Traversal (8.0.0 - 8.8.12) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 9.0.x Directory Traversal (9.0.0 - 9.0.14) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 9.1.x Directory Traversal (9.1.0 - 9.1.10) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 9.2.x Directory Traversal (9.2.0 - 9.2.1) CVE-2021-32610 CWE-22 CWE-22 High ExpressJs Local File Read via the layout parameter CWE-22 CWE-22 High Ext JS arbitrary file read CWE-22 CWE-22 High Fortigate SSL VPN Arbitrary File reading (CVE-2018-13379) CVE-2018-13379 CWE-22 CWE-22 High IBM Tivoli Access Manager directory traversal CVE-2010-4622 CVE-2011-0494 CWE-22 CWE-22 High IIS extended unicode directory traversal vulnerability CVE-2000-0884 CWE-22 CWE-22 High JIRA Security Advisory 2014-02-26 CWE-22 CWE-22 High Joomla! Core 1.5.x Directory Traversal (1.5.0 - 1.5.8) CVE-2009-0113 CWE-22 CWE-22 High Joomla! Core 3.4.x Directory Traversal (3.4.0 - 3.4.5) CVE-2015-8564 CWE-22 CWE-22 High Joomla! Core 3.9.x Directory Traversal (3.9.3 - 3.9.5) CVE-2019-11831 CWE-22 CWE-22 High Joomla! Core 3.x.x Directory Traversal (3.0.0 - 3.9.24) CVE-2021-23132 CWE-22 CWE-22 High Joomla! Core 3.x.x Directory Traversal (3.0.0 - 3.9.24) CVE-2021-26028 CWE-22 CWE-22 High Joomla! Core 3.x.x Directory Traversal (3.2.0 - 3.4.5) CVE-2015-8565 CWE-22 CWE-22 High Joomla! Core Directory Traversal (1.5.0 - 3.9.4) CVE-2019-10945 CWE-22 CWE-22 High Joomla! Core Directory Traversal (2.5.0 - 3.9.20) CVE-2020-24597 CWE-22 CWE-22 High Joomla! Core Directory Traversal (2.5.0 - 3.9.22) CVE-2020-35612 CWE-22 CWE-22 High Laravel log viewer local file download (LFD) CVE-2018-8947 CWE-22 CWE-22 High lighttpd v1.4.34 SQL injection and path traversal CVE-2014-2323 CVE-2014-2324 CWE-89 CWE-89 High Lucee Server Arbitrary File Creation CWE-22 CWE-22 High Multiple vulnerabilities in Ioncube loader-wizard.php CWE-552 CWE-552 High Node.js path validation vulnerability CVE-2017-14849 CWE-22 CWE-22 High Oracle JavaServer Faces multiple vulnerabilities CVE-2013-3827 CWE-22 CWE-22 High Path Traversal in Oracle GlassFish server open source edition CWE-22 CWE-22 High Path traversal via misconfigured NGINX alias CWE-22 CWE-22 High Pulse Secure SSL VPN Arbitrary File reading (CVE-2019-11510) CVE-2019-11510 CWE-22 CWE-22 High Rails Asset Pipeline Directory Traversal Vulnerability CVE-2018-3760 CWE-22 CWE-22 High Ruby on Rails directory traversal vulnerability CVE-2014-0130 CWE-22 CWE-22 High SAP Portal directory traversal vulnerability CWE-22 CWE-22 High Server directory traversal CWE-22 CWE-22 High spring-boot-actuator-logview Path Traversal CVE-2021-21234 CWE-22 CWE-22 High Tomcat path traversal via reverse proxy mapping CWE-22 CWE-22 High Typo3 Restler 1.7.0 Local File Disclosure CWE-22 CWE-22 High uWSGI Path Traversal vulnerability CVE-2018-7490 CWE-22 CWE-22 High VMware directory traversal and privilege escalation vulnerabilities CVE-2009-2267 CVE-2009-3733 CWE-22 CWE-22 High WEBrick v.1.3 directory traversal CVE-2008-1145 CWE-22 CWE-22 High WordPress 2.3.3 Directory Traversal Vulnerability (0.6.2 - 2.3.3) CVE-2008-4769 CWE-22 CWE-22 High WordPress 4.5.3 Directory Traversal Vulnerability (4.5.3 - 4.5.3) CVE-2016-6896 CVE-2016-10148 CWE-22 CWE-22 High WordPress Directory Traversal (3.7 - 5.0.3) CVE-2019-8943 CWE-22 CWE-22 High WordPress Duplicator plugin Unauthenticated Arbitrary File Download CWE-22 CWE-22 High WordPress Plugin A/B Test 'action' Parameter Directory Traversal (1.0.6) CWE-22 CWE-22 High WordPress Plugin Add From Server Directory Traversal (3.3.3) CWE-22 CWE-22 High WordPress Plugin Ad Inserter-Ad Manager & AdSense Ads Directory Traversal (2.4.19) CVE-2019-15323 CWE-22 CWE-22 High WordPress Plugin Advanced Dewplayer Directory Traversal (1.2) CVE-2013-7240 CWE-22 CWE-22 High WordPress Plugin Ajax Store Locator Directory Traversal (1.2.0) CWE-22 CWE-22 High WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Directory Traversal (5.1.4) CWE-22 CWE-22 High WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Directory Traversal (3.1.4) CWE-22 CWE-22 High WordPress Plugin Booking Calendar Directory Traversal (7.0) CVE-2017-2150 CWE-22 CWE-22 High WordPress Plugin Chat Room Directory Traversal (0.1.2) CWE-22 CWE-22 High WordPress Plugin Contact Form by WPForms-Drag & Drop Form Builder for WordPress Directory Traversal (1.7.5.3) CWE-22 CWE-22 High WordPress Plugin Cross-RSS Directory Traversal (1.7) CVE-2014-4941 CWE-22 CWE-22 High WordPress Plugin Database Backup for WordPress 'edit.php' Directory Traversal (1.7) CVE-2006-4208 CWE-22 CWE-22 High WordPress Plugin DB Backup Directory Traversal (4.5) CVE-2014-9119 CWE-22 CWE-22 High WordPress Plugin Delightful Downloads Directory Traversal (1.6.6) CVE-2017-1000170 CWE-22 CWE-22 High WordPress Plugin Download Manager Directory Traversal (3.2.54) CVE-2022-2926 CWE-22 CWE-22 High WordPress Plugin DukaPress Directory Traversal (2.5.2) CVE-2014-8799 CWE-22 CWE-22 High WordPress Plugin Enable Media Replace Directory Traversal (3.6.3) CVE-2022-2554 CWE-22 CWE-22 High WordPress Plugin Font-official webfonts plugin of Fonts For Web Directory Traversal (7.5) CVE-2015-7683 CWE-22 CWE-22 High WordPress Plugin Import and export users and customers Directory Traversal (1.14.2) CVE-2019-15326 CWE-22 CWE-22 High WordPress Plugin Import CSV Directory Traversal (1.0) CWE-22 CWE-22 High WordPress Plugin Insert or Embed Articulate Content into WordPress Directory Traversal (4.2999) CVE-2019-15648 CWE-22 CWE-22 High WordPress Plugin Insert Pages Directory Traversal (3.2.3) CWE-22 CWE-22 High WordPress Plugin jRSS Widget 'url' Parameter Directory Traversal (1.1.1) CWE-22 CWE-22 High WordPress Plugin Media from FTP Directory Traversal (9.85) CVE-2018-5310 CWE-22 CWE-22 High WordPress Plugin Migration, Backup, Staging-WPvivid Directory Traversal (0.9.75) CVE-2022-2863 CWE-22 CWE-22 High WordPress Plugin myEASYbackup 'dwn_file' Parameter Directory Traversal (1.0.8.1) CVE-2012-0898 CWE-22 CWE-22 High WordPress Plugin Nelio AB Testing Directory Traversal (4.4.4) CWE-22 CWE-22 High WordPress Plugin NextGEN Gallery-WordPress Gallery Directory Traversal (2.0.0) CWE-22 CWE-22 High WordPress Plugin NextGEN Gallery-WordPress Gallery Directory Traversal (2.1.9) CWE-22 CWE-22 High WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Directory Traversal (1.7.14.2) CVE-2014-8801 CWE-22 CWE-22 High WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Directory Traversal (1.3.33) CWE-22 CWE-22 High WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Directory Traversal (1.3.42) CWE-22 CWE-22 High WordPress Plugin SearchWP Live Ajax Search Directory Traversal (1.6.2) CVE-2022-3227 CWE-22 CWE-22 High WordPress Plugin SE HTML5 Album Audio Player Directory Traversal (1.1.0) CVE-2015-4414 CWE-22 CWE-22 High WordPress Plugin SEO Tools 'file' Parameter Directory Traversal (3.1.7) CWE-22 CWE-22 High WordPress Plugin Simple Job Board Directory Traversal (2.9.3) CVE-2020-35749 CWE-22 CWE-22 High WordPress Plugin Smush Image Compression and Optimization Directory Traversal (2.7.5) CVE-2017-15079 CWE-22 CWE-22 High WordPress Plugin Tom M8te Directory Traversal (1.5.3) CVE-2014-5187 CWE-22 CWE-22 High WordPress Plugin True Ranker Directory Traversal (2.2.2) CVE-2021-39312 CWE-22 CWE-22 High WordPress Plugin Wholesale Market for WooCommerce Directory Traversal (1.0.8) CVE-2022-4109 CWE-22 CWE-22 High WordPress Plugin WordPress Download Manager Directory Traversal (2.6.95) CVE-2014-8585 CWE-22 CWE-22 High WordPress Plugin WordPress File Upload Directory Traversal (4.12.2) CVE-2020-10564 CWE-22 CWE-22 High WordPress Plugin WordPress Infinite Scroll-Ajax Load More Directory Traversal (5.5.4) CWE-22 CWE-22 High WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Directory Traversal (4.9.9) CVE-2017-2245 CWE-22 CWE-22 High WordPress Plugin WP-Lister Lite for Amazon Directory Traversal (0.9.6.35) CVE-2017-1000170 CWE-22 CWE-22 High WordPress Plugin WP-Lister Lite for eBay Directory Traversal (2.0.20) CVE-2017-1000170 CWE-22 CWE-22 High WordPress Plugin WP AmASIN-The Amazon Affiliate Shop Directory Traversal (0.9.6) CVE-2014-4577 CWE-22 CWE-22 High WordPress Plugin WP Background Takeover Directory Traversal (4.1.4) CVE-2018-9118 CWE-22 CWE-22 High WordPress Plugin WP Cost Estimation & Payment Forms Builder Directory Traversal (9.659) CWE-22 CWE-22 High WordPress Plugin WP Fastest Cache Directory Traversal (0.8.9.5) CVE-2019-13635 CWE-22 CWE-22 High WordPress Plugin WP Fastest Cache Directory Traversal (0.9.1.6) CVE-2021-20714 CWE-22 CWE-22 High WordPress Plugin WP Post Popup Directory Traversal (2.0) CWE-22 CWE-22 High WordPress Plugin WP Post Popup Directory Traversal (2.1.1) CWE-22 CWE-22 High WordPress Plugin WP Publication Archive 'file' Parameter Directory Traversal (2.3) CWE-22 CWE-22 High WordPress Plugin WPS Child Theme Generator Directory Traversal (1.1) CVE-2019-15822 CWE-22 CWE-22 High WordPress Plugin WP Source Control Directory Traversal (3.0.0) CVE-2014-5368 CWE-22 CWE-22 High WordPress Plugin Zedna Contact form Directory Traversal (1.1) CWE-22 CWE-22 High WordPress Plugin Zedna eBook download Directory Traversal (1.1) CWE-22 CWE-22 High WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist Directory Traversal (6.45) CVE-2021-39316 CWE-22 CWE-22 High
