Weaknesses of type CWE-434
2,795 resultsCVE-2022-40035HIGHFile Upload Vulnerability found in Rawchen Blog-ssm v1.0 allowing attackers to execute arbitrary commands and gain escalated privileges via EPSS 1.2%CVE-2024-56249CRITICALWordPress WPMasterToolKit plugin <= 1.13.1 - Arbitrary File Upload vulnerabilityEPSS 1.2%CVE-2012-10050CRITICALCuteFlow <= 2.11.2 Arbitrary File Upload RCEEPSS 1.2%CVE-2023-39462MEDIUMTriangle MicroWorks SCADA Data Gateway Workspace Unrestricted Upload VulnerabilityEPSS 1.2%CVE-2023-50760HIGHOnline Notice Board System v1.0 - Insecure File UploadEPSS 1.2%CVE-2024-46377CRITICALBest House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the save_settings() function of the file rental/aEPSS 1.2%CVE-2023-43740HIGHOnline Book Store Project v1.0 - Insecure File UploadEPSS 1.2%CVE-2024-0699MEDIUMAI Engine <= 2.1.4 - Authenticated(Editor+) Arbitrary File Upload via add_image_from_urlEPSS 1.2%CVE-2023-29384CRITICALWordPress WordPress Job Board and Recruitment Plugin – JobWP Plugin <= 2.0 is vulnerable to Arbitrary File UploadEPSS 1.2%CVE-2012-10062HIGHXAMPP WebDAV PHP Upload Authentication Bypass RCEEPSS 1.2%CVE-2026-1358CRITICALAirleader Master Unrestricted Upload of File with Dangerous TypeEPSS 1.2%CVE-2025-7852CRITICALWPBookit <= 1.0.6 - Unauthenticated Arbitrary File Upload via image_upload_handle FunctionEPSS 1.2%CVE-2023-5185CRITICALGym Management System Project v1.0 - Insecure File UploadEPSS 1.2%CVE-2024-22515HIGHUnrestricted File Upload vulnerability in iSpyConnect.com Agent DVR 5.1.6.0 allows attackers to upload arbitrary files via the upload audio EPSS 1.2%CVE-2021-21245CRITICALPre-Auth Arbitrary File UploadEPSS 1.2%CVE-2022-41573CRITICALAn issue was discovered in Ovidentia 8.3. The file upload feature does not prevent the uploading of executable files. A user can upload a .pEPSS 1.2%CVE-2024-24350HIGHFile Upload vulnerability in Software Publico e-Sic Livre v.2.0 and before allows a remote attacker to execute arbitrary code via the extensEPSS 1.2%CVE-2024-9849HIGHReal3D Flipbook Lite – 3D FlipBook, PDF Viewer, PDF Embedder <= 4.8 - Authenticated (Author+) Arbitrary File UploadEPSS 1.2%CVE-2019-1010123—MODX Revolution Gallery 1.7.0 is affected by: CWE-434: Unrestricted Upload of File with Dangerous Type. The impact is: Creating file with cuEPSS 1.2%CVE-2025-28915CRITICALWordPress ThemeEgg ToolKit plugin <= 1.2.9 - Arbitrary File Upload vulnerabilityEPSS 1.2%