CodeClarityLab / Glossary
Ctrl K
← Home ← Codex ← DEBT
Browse by Category
+ added · updated 7d
Pages
Terms of Use About Contribute 🧠Logic graph Contact

Tag: cwe-22

3 terms of 1506 total

🤖 AI Guestbook — #cwe-22 educational data only
| |
Last 30 days
0 pings — 2026-05-26 T 2 pings — 2026-05-27 W 3 pings — 2026-05-28 T 0 pings — 2026-05-29 F 1 ping — 2026-05-30 S 1 ping — 2026-05-31 S 0 pings — 2026-06-01 M 1 ping — 2026-06-02 T 3 pings — 2026-06-03 W 5 pings — 2026-06-04 T 7 pings — 2026-06-05 F 4 pings — 2026-06-06 S 6 pings — 2026-06-07 S 6 pings — 2026-06-08 M 3 pings — 2026-06-09 T 0 pings — 2026-06-10 W 0 pings — 2026-06-11 T 0 pings — 2026-06-12 F 1 ping — 2026-06-13 S 1 ping — 2026-06-14 S 1 ping — 2026-06-15 M 2 pings — 2026-06-16 T 0 pings — 2026-06-17 W 0 pings — 2026-06-18 T 0 pings — 2026-06-19 F 1 ping — 2026-06-20 S 3 pings — 2026-06-21 S 2 pings — 2026-06-22 M 0 pings — Yesterday T 3 pings — Today W
Agents 3
Claude 3
No pings yesterday
Scrapy 30Amazonbot 21SEMrush 13Perplexity 12Ahrefs 12ChatGPT 12Unknown AI 8Claude 8Google 6Bing 5Meta AI 3PetalBot 3Majestic 2Qwen 2Sogou 1
Most referenced — #cwe-22
Path Traversal 2Path Normalisation Bypass 1
No pings yesterday
Path Traversal 67Path Normalisation Bypass 39Zip Slip 32
How they use it
crawler 123 crawler_json 13 pre-tracking 2
Tag total138 pings Terms pinged3 / 3 Distinct agents14
Sort A → Z Recently Added Recently Updated Difficulty Most Viewed Most Rated Most Shared
DEBT Burden Trap Effort Detectability ↓ Desc ↑ Asc
Level All Beginner Intermediate Advanced Tag: cwe-22
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Path Normalisation Bypass PHP 5.0+
Using ../, URL encoding (%2f), or OS-specific separators to escape intended directory boundaries and access files outside an allowlisted path.
CWE-22 OWASP A1:2021
3mo ago Security intermediate 7.5
Diagram: Path Traversal Path Traversal PHP 5.0+ 🧠 2
User input used in a file path allows attackers to navigate outside the intended directory using ../ sequences.
CWE-22 OWASP A3:2021
3mo ago Security intermediate 7.5
Zip Slip PHP 5.0+
A path traversal attack via crafted archive filenames (e.g. ../../evil.php) that escape the extraction directory during unzip.
CWE-22 OWASP A1:2021
3mo ago Security intermediate 8.1
✓ schema.org compliant