Fallos del tipo CWE-434
2812 resultadosCVE-2023-3796MEDIUMBug Finder Foody Friend Profile Picture profile unrestricted uploadEPSS 0.5%CVE-2025-6327CRITICALWordPress King Addons for Elementor plugin <= 51.1.36 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2020-36825MEDIUMcyberaz0r WebRAT api.php download_file unrestricted uploadEPSS 0.5%CVE-2023-30968MEDIUMStored XSS in gaiaEPSS 0.5%CVE-2026-10072HIGHInterinfo|DreamMaker - Arbitrary File UploadEPSS 0.5%CVE-2024-30533HIGHWordPress Layouts for Elementor plugin < 1.8 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2025-0341MEDIUMCampCodes Computer Laboratory Management System edit unrestricted uploadEPSS 0.5%CVE-2024-46101CRITICALGDidees CMS <= v3.9.1 has a file upload vulnerability.EPSS 0.5%CVE-2025-6843MEDIUMcode-projects Simple Photo Gallery upload-photo.php unrestricted uploadEPSS 0.5%CVE-2025-65474HIGHAn arbitrary file rename vulnerability in the /admin/manager.php component of EasyImages 2.0 v2.8.6 and below allows attackers to execute arEPSS 0.5%CVE-2025-9475MEDIUMSourceCodester Human Resource Information System editemployee_process.php unrestricted uploadEPSS 0.5%CVE-2024-33836CRITICALIn the module "JA Marketplace" (jamarketplace) up to version 9.0.1 from JA Module for PrestaShop, a guest can upload files with extensions .EPSS 0.5%CVE-2025-9476MEDIUMSourceCodester Human Resource Information System editemployee_process.php unrestricted uploadEPSS 0.5%CVE-2025-10425MEDIUM1000projects Online Student Project Report Submission and Evaluation System student_controller.php unrestricted uploadEPSS 0.5%CVE-2025-11908MEDIUMShenzhen Ruiming Technology Streamax Crocus FileDir.do uploadFile unrestricted uploadEPSS 0.5%CVE-2025-12966HIGHAll-in-One Video Gallery 4.5.4 - 4.5.7 – Authenticated (Author+) Arbitrary File Upload via Import ZIPEPSS 0.5%CVE-2025-12154HIGHAuto Thumbnailer <= 1.0 - Authenticated (Contributor+) Arbitrary File UploadEPSS 0.5%CVE-2025-9397MEDIUMgivanz Vvveb media.php unrestricted uploadEPSS 0.5%CVE-2025-22213HIGH[20250301] - Core - Malicious file uploads via Media ManagerEPSS 0.5%CVE-2025-1890MEDIUMshishuocms ManageUpLoadAction.java handleRequest unrestricted uploadEPSS 0.5%