Falhas do tipo CWE-434
2.786 resultadosCVE-2026-53787CRITICALAmasty Order Attributes for Magento 2 < 4.0.0 Unauthenticated Arbitrary File UploadEPSS 3.7%CVE-2023-2246MEDIUMSourceCodester Online Pizza Ordering System unrestricted uploadEPSS 3.6%CVE-2024-9290CRITICALSuper Backup & Clone - Migrate for WordPress <= 2.3.3 - Unauthenticated Arbitrary File UploadEPSS 3.5%CVE-2021-22697—A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody software (V2.1.13 aEPSS 3.5%CVE-2019-1888HIGHCisco Unified Contact Center Express Privilege Escalation VulnerabilityEPSS 3.4%CVE-2021-44159CRITICAL4MOSAn GCB Doctor - Unrestricted Upload of FileEPSS 3.4%CVE-2016-9492—PHP forms generated using the PHP FormMail Generator are vulnerable to unrestricted upload of dangerous file typesEPSS 3.4%CVE-2023-3722HIGHAvaya Aura Device Services Remote Code ExecutionEPSS 3.3%CVE-2024-48594HIGHFile Upload vulnerability in Prison Management System v.1.0 allows a remote attacker to execute arbitrary code via the file upload componentEPSS 3.3%CVE-2015-10137CRITICALWebsite Contact Form With File Upload <= 1.3.4 - Arbitrary File UploadEPSS 3.3%CVE-2024-52302HIGHcommon-user-management Unrestricted File Upload Leading to Remote Code Execution (RCE)EPSS 3.2%CVE-2017-16772—Improper input validation vulnerability in SYNOPHOTO_Flickr_MultiUpload in Synology Photo Station before 6.8.3-3463 and before 6.3-2971 alloEPSS 3.2%CVE-2026-1405CRITICALSlider Future <= 1.0.5 - Unauthenticated Arbitrary File UploadEPSS 3.2%CVE-2024-23946MEDIUMApache OFBiz: Path traversal or file inclusionEPSS 3.1%CVE-2026-22241HIGHOpen eClass has Unrestricted File Upload that Leads to Remote Code Execution (RCE)EPSS 3.1%CVE-2023-4739MEDIUMByzoro Smart S85F Management Platform updateos.php unrestricted uploadEPSS 3.1%CVE-2024-36858CRITICALAn arbitrary file upload vulnerability in the /v1/app/writeFileSync interface of Jan v0.4.12 allows attackers to execute arbitrary code via EPSS 3.1%CVE-2021-24240—Business Hours Pro <= 5.5.0 - Unauthenticated Arbitrary File Upload to RCEEPSS 3.0%CVE-2026-24897CRITICALAuthenticated Remote Code Execution via Arbitrary File UploadEPSS 3.0%CVE-2024-4963MEDIUMD-Link DAR-7000-40 url.php unrestricted uploadEPSS 3.0%