Weaknesses of type CWE-434
2,813 resultsCVE-2025-32660CRITICALWordPress JS Job Manager plugin <= 2.0.2 - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2025-4926MEDIUMPHPGurukul Car Rental Project post-avehical.php unrestricted uploadEPSS 0.4%CVE-2025-13827HIGHGrapesJsBuilder File Upload allows all file uploadsEPSS 0.4%CVE-2019-25582HIGHi-doit CMDB 1.12 Arbitrary File Download via file_manager ParameterEPSS 0.4%CVE-2025-1590MEDIUMSourceCodester E-Learning System List of Lessons Page index.php unrestricted uploadEPSS 0.4%CVE-2025-2607MEDIUMphplaozhang LzCMS-LaoZhangBoKeXiTong HTTP POST Request upimage.html unrestricted uploadEPSS 0.4%CVE-2023-35018LOWIBM Security Verify Governance file uploadEPSS 0.4%CVE-2025-66908MEDIUMTurms AI-Serving module v0.10.0-SNAPSHOT and earlier contains an improper file type validation vulnerability in the OCR image upload functioEPSS 0.4%CVE-2025-11136MEDIUMYiFang CMS Backend File.php webUploader unrestricted uploadEPSS 0.4%CVE-2026-11344MEDIUMcode-projects Vehicle Management System New Driver Registration Form newdriver.php unrestricted uploadEPSS 0.4%CVE-2026-2226MEDIUMDouPHP ZIP File file.php unrestricted uploadEPSS 0.4%CVE-2025-47642CRITICALWordPress Ajar in5 Embed plugin <= 3.1.5 - Arbitrary File Upload VulnerabilityEPSS 0.4%CVE-2026-0643MEDIUMprojectworlds House Rental and Property Listing Signup register.php unrestricted uploadEPSS 0.4%CVE-2025-9847MEDIUMScriptAndTools Real Estate Management System register.php unrestricted uploadEPSS 0.4%CVE-2025-60219CRITICALWordPress WooCommerce Designer Pro Plugin <= 1.9.24 - Arbitrary File Upload VulnerabilityEPSS 0.4%CVE-2025-11354MEDIUMcode-projects Online Hotel Reservation System addslideexec.php unrestricted uploadEPSS 0.4%CVE-2024-34021MEDIUMUnrestricted upload of file with dangerous type vulnerability exists in ELECOM wireless LAN routers. A specially crafted file may be uploadeEPSS 0.4%CVE-2025-7175MEDIUMcode-projects E-Commerce Site users_photo.php unrestricted uploadEPSS 0.4%CVE-2024-13134MEDIUMZeroWdd studentmanager TeacherController. java editTeacher unrestricted uploadEPSS 0.4%CVE-2025-0402MEDIUM1902756969 reggie CommonController.java upload unrestricted uploadEPSS 0.4%