Fallos del tipo CWE-434
2800 resultadosCVE-2012-10056HIGHPHP Volunteer Management System 1.0.2 Arbitrary File UploadEPSS 0.9%CVE-2022-40925HIGHZoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "save_event" file of the "Events" mEPSS 0.9%CVE-2022-0409HIGHUnrestricted Upload of File with Dangerous Type in star7th/showdocEPSS 0.9%CVE-2023-32753CRITICALITPison OMICARD EDM - Arbitrary File UploadEPSS 0.9%CVE-2023-39346HIGHbjrjk/LinuxASMCallGraph before commit 20dba06 allows attackers to cause a RCE on the server side via uploading a crafted ZIP file due to incorrect filtering rules of uploaded fileEPSS 0.9%CVE-2025-6220HIGHUltimate Addons for Contact Form 7 <= 3.5.12 - Authenticated (Administrator+) Arbitrary File Upload via 'save_options'EPSS 0.9%CVE-2020-22755HIGHFile upload vulnerability in MCMS 5.0 allows attackers to execute arbitrary code via a crafted thumbnail. A different vulnerability than CVEEPSS 0.9%CVE-2022-44053CRITICALThe d8s-networking for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential cEPSS 0.9%CVE-2025-11948CRITICALExcellent Infotek|Document Management System - Arbitrary File UploadEPSS 0.9%CVE-2024-45171HIGHAn issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user input validation, it is possible to upload dangEPSS 0.9%CVE-2016-15046HIGHHanwha Techwin SSM 1.32 & 1.4 ActiveMQ File Upload RCEEPSS 0.9%CVE-2024-1527CRITICALUnrestricted Upload of File with Dangerous Type in CMS Made SimpleEPSS 0.9%CVE-2024-8126HIGHAdvanced File Manager <= 5.2.8 - Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.9%CVE-2026-3535CRITICALDSGVO Google Web Fonts GDPR <= 1.1 - Unauthenticated Arbitrary File Upload via 'fonturl' ParameterEPSS 0.9%CVE-2024-3736MEDIUMcym1102 nginxWebUI upload unrestricted uploadEPSS 0.9%CVE-2024-23180HIGHImproper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3EPSS 0.9%CVE-2023-40265HIGHAn issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows authenticated remote code exEPSS 0.9%CVE-2022-43074CRITICALAyaCMS v3.1.2 was discovered to contain an arbitrary file upload vulnerability via the component /admin/fst_upload.inc.php. This vulnerabiliEPSS 0.9%CVE-2022-42154CRITICALAn arbitrary file upload vulnerability in the component /apiadmin/upload/attach of 74cmsSE v3.13.0 allows attackers to execute arbitrary codEPSS 0.9%CVE-2025-11391CRITICALPPOM – Product Addons & Custom Fields for WooCommerce <= 33.0.15 - Unauthenticated Arbitrary File UploadEPSS 0.9%