Falhas do tipo CWE-434

2.813 resultados
CVE-2024-13134MEDIUMZeroWdd studentmanager TeacherController. java editTeacher unrestricted uploadEPSS 0.4%CVE-2024-13212MEDIUMSingMR HouseRent AddHouseController.java upload unrestricted uploadEPSS 0.4%CVE-2025-6870MEDIUMSourceCodester Simple Company Website Content.php unrestricted uploadEPSS 0.4%CVE-2026-56058CRITICALWordPress Quform plugin <= 2.23.0 - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2025-4258MEDIUMzhangyanbo2007 youkefu MediaController.java upload unrestricted uploadEPSS 0.4%CVE-2026-27419CRITICALWordPress Zegen theme <= 1.1.9 - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2026-56059CRITICALWordPress Travel Booking theme <= 2.2.5 - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2026-2666MEDIUMmingSoft MCMS Template Archive uploadTemplate.do unrestricted uploadEPSS 0.4%CVE-2025-46080MEDIUMHuoCMS V3.5.1 has a File Upload Vulnerability. An attacker can exploit this flaw to bypass whitelist restrictions and craft malicious files EPSS 0.4%CVE-2025-10000MEDIUMQyrr – simply and modern QR-Code creation <= 2.0.7 - Authenticated (Contributor+) Arbitrary File UploadEPSS 0.4%CVE-2025-67077HIGHFile upload vulnerability in Omnispace Agora Project before 25.10 allowing authenticated, or under certain conditions also guest users, via EPSS 0.4%CVE-2025-12223MEDIUMBdtask Flight Booking Software Package Information package-information unrestricted uploadEPSS 0.4%CVE-2025-12347MEDIUMMaxSite CMS save-file-ajax.php unrestricted uploadEPSS 0.4%CVE-2025-39380CRITICALWordPress Hospital Management System plugin <= 47.0(20-11-2023) - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2025-7151MEDIUMCampcodes Advanced Online Voting System voters_add.php unrestricted uploadEPSS 0.4%CVE-2025-7210MEDIUMcode-projects/Fabian Ros Library Management System profile_update.php unrestricted uploadEPSS 0.4%CVE-2025-68562CRITICALWordPress MapSVG plugin <= 8.7.3 - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2025-7124MEDIUMcode-projects Online Note Sharing Profile Image userprofile.php unrestricted uploadEPSS 0.4%CVE-2025-7152MEDIUMCampcodes Advanced Online Voting System candidates_add.php unrestricted uploadEPSS 0.4%CVE-2025-6422MEDIUMCampcodes Online Recruitment Management System About Content Page ajax.php unrestricted uploadEPSS 0.4%