Falhas do tipo CWE-434
2.813 resultadosCVE-2025-7124MEDIUMcode-projects Online Note Sharing Profile Image userprofile.php unrestricted uploadEPSS 0.4%CVE-2025-7151MEDIUMCampcodes Advanced Online Voting System voters_add.php unrestricted uploadEPSS 0.4%CVE-2025-6422MEDIUMCampcodes Online Recruitment Management System About Content Page ajax.php unrestricted uploadEPSS 0.4%CVE-2026-30761HIGHAn arbitrary file upload vulnerability in the pages/admin.uploadmapimg.php component of SourceBans Material Admin v1.1.6 allows attackers toEPSS 0.4%CVE-2025-1791MEDIUMZorlan SkyCaiji Tool.php fileAction unrestricted uploadEPSS 0.4%CVE-2025-31339MEDIUMWisdom Master Pro - Unrestricted Upload of File with Dangerous TypeEPSS 0.4%CVE-2026-27043HIGHWordPress Photography theme < 7.7.6 - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2026-7852CRITICALUnrestricted File Upload in Limatek's LimRAD NACEPSS 0.4%CVE-2025-54473CRITICALExtension - phoca.cz - Authenticated RCE vulnerability in Phoca Commander component 1.0.0-4.0.0 and 5.0.0-5.0.1 for JoomlaEPSS 0.4%CVE-2024-42375MEDIUMMultiple Unrestricted File Upload vulnerabilities in SAP BusinessObjects Business Intelligence PlatformEPSS 0.4%CVE-2026-1061MEDIUMxiweicheng TMS FileController.java upload unrestricted uploadEPSS 0.4%CVE-2025-12346MEDIUMMaxSite CMS HTTP Header uploads-require-maxsite.php unrestricted uploadEPSS 0.4%CVE-2025-4291MEDIUMIdeaCMS saveUpload unrestricted uploadEPSS 0.4%CVE-2024-8725MEDIUMAdvanced File Manager <= 5.2.8 - Authenticated (Subscriber+) Limited File UploadEPSS 0.4%CVE-2024-13355MEDIUMAdmin and Customer Messages After Order for WooCommerce <= 13.2 - Authenticated (Subscriber+) Limited File Upload to Cross-Site ScriptingEPSS 0.4%CVE-2026-3797MEDIUMTiandy Video Surveillance System 视频监控平台 CLS_REST_File.java uploadFile unrestricted uploadEPSS 0.4%CVE-2023-25365HIGHCross Site Scripting vulnerability found in October CMS v.3.2.0 allows local attacker to execute arbitrary code via the file type .mp3EPSS 0.4%CVE-2025-23213HIGHTandoor Recipes - Stored XSS through Unrestricted File UploadEPSS 0.4%CVE-2025-49387CRITICALWordPress Drag and Drop File Upload for Elementor Forms Plugin <= 1.5.3 - Arbitrary File Upload VulnerabilityEPSS 0.4%CVE-2025-14195MEDIUMcode-projects Employee Profile Management System add_file_query.php unrestricted uploadEPSS 0.4%