CWE-25: CWE-25

Total CVEs

Critical

High

8.0

Avg CVSS

Yearly Trend

2026

2025

2024

2022

Top Affected Vendors

1 Cisco 1

2 Riello Ups 1

3 Fooplugins 1

4 Mate Desktop 1

5 Biges 1

All CWE-25 CVEs (7)

CVE-2025-68916

9.1

This vulnerability allows attackers to perform directory traversal through the certsupload.cgi endpoint in Riello UPS NetMan 208 Application, enabling...

Dec 24, 2025

CVE-2023-52138

8.2

Engrampa archive manager for MATE environment has a path traversal vulnerability when extracting CPIO or ISO archives. Attackers can craft malicious a...

Feb 5, 2024

CVE-2022-20775

7.8

This vulnerability in Cisco SD-WAN Software allows authenticated local attackers to gain root privileges by exploiting improper access controls in the...

Sep 30, 2022

CVE-2023-6947

7.7

The FooGallery WordPress plugin contains a directory traversal vulnerability that allows authenticated attackers with contributor-level access or high...

Dec 10, 2024

CVE-2024-2442

7.5

A path traversal vulnerability in Franklin Fueling System EVO 550 and EVO 5000 allows attackers to access sensitive files on the system by manipulatin...

Mar 19, 2024

CVE-2023-6919

7.5

This path traversal vulnerability in Biges Safe Life Technologies Electronics Inc. VGuard allows attackers to access files outside the intended direct...

Jan 26, 2024

CVE-2026-23877

N/A

Swing Music versions before 2.1.4 contain a directory traversal vulnerability in the list_folders() function. Authenticated users (including non-admin...

Jan 19, 2026

About CWE-25 (CWE-25)

Our database tracks 7 CVEs classified as CWE-25, with 1 rated critical and 5 rated high severity. The average CVSS score for CWE-25 vulnerabilities is 8.0.

External reference: View CWE-25 on MITRE CWE →

Monitor CWE-25 Vulnerabilities

Get alerted when new CWE-25 CVEs affect your infrastructure.

Start Monitoring Free