Fallos del tipo CWE-434

2804 resultados
CVE-2026-33071MEDIUMFileRise: WebDAV upload path bypasses filename validation enforced by regular uploadsEPSS 0.6%CVE-2025-34328CRITICALAudioCodes Fax/IVR Appliance <= 2.6.23 Unauthenticated File Upload RCE via ajaxScript.phpEPSS 0.6%CVE-2024-4904MEDIUMByzoro Smart S200 Management Platform userattestation.php unrestricted uploadEPSS 0.6%CVE-2024-2406MEDIUMGacjie Server Upload.php index unrestricted uploadEPSS 0.6%CVE-2025-10747HIGHWP-DownloadManager <= 1.68.11 - Authenticated (Admin+) Arbitrary File UploadEPSS 0.6%CVE-2025-5061HIGHWP Import Export Lite <= 3.9.29 - Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.6%CVE-2024-7192MEDIUMitsourcecode Society Management System student.php unrestricted uploadEPSS 0.6%CVE-2024-52677CRITICALHkCms <= v2.3.2.240702 is vulnerable to file upload in the getFileName method in /app/common/library/Upload.php.EPSS 0.6%CVE-2024-5734MEDIUMitsourcecode Online Discussion Forum poster.php unrestricted uploadEPSS 0.6%CVE-2025-4279HIGHExternal image replace <= 1.0.8 - Authenticated (Contributor+) Arbitrary File UploadEPSS 0.6%CVE-2022-0499Sermon Browser <= 0.45.22 - Arbitrary File Upload via CSRFEPSS 0.6%CVE-2023-51473CRITICALWordPress TerraClassifieds Plugin <= 2.0.3 is vulnerable to Arbitrary File UploadEPSS 0.6%CVE-2021-47943HIGHTextPattern CMS 4.8.7 Remote Code Execution via File UploadEPSS 0.6%CVE-2023-51411CRITICALWordPress Frontend Admin by DynamiApps Plugin <= 3.18.3 is vulnerable to Arbitrary File UploadEPSS 0.6%CVE-2025-47787HIGHEmlog Pro Contains a File Upload VulnerabilityEPSS 0.6%CVE-2025-2891HIGHWP Pro Real Estate 7 <= 3.5.4 - Authenticated (Custom) Arbitrary File UploadEPSS 0.6%CVE-2025-24650CRITICALWordPress Tourfic plugin <= 2.15.3 - Arbitrary File Upload vulnerabilityEPSS 0.6%CVE-2021-47904HIGHPhreeBooks 5.2.3 - Remote Code ExecutionEPSS 0.6%CVE-2025-6207HIGHWP Import Export Lite <= 3.9.28 - Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.6%CVE-2024-2058MEDIUMSourceCodester Petrol Pump Management Software product.php unrestricted uploadEPSS 0.6%