Falhas do tipo CWE-434

2.816 resultados
CVE-2025-60735HIGHPerfreeBlog v4.0.11 has a File Upload vulnerability in the installPlugin functionEPSS 0.2%CVE-2026-24673MEDIUMOpen eClass Has File Upload Filter Bypass via ZIP Archive ExtractionEPSS 0.2%CVE-2025-60731HIGHPerfreeBlog v4.0.11 has a File Upload vulnerability in the installTheme functionEPSS 0.2%CVE-2024-34683MEDIUMUnrestricted file upload in SAP Document Builder (HTTP service)EPSS 0.2%CVE-2025-10669MEDIUMAirsonic-Advanced Playlist Upload unrestricted uploadEPSS 0.2%CVE-2025-10755MEDIUMSelleo Mentingo Content-Type unrestricted uploadEPSS 0.2%CVE-2025-15199MEDIUMcode-projects College Notes Uploading System userprofile.php unrestricted uploadEPSS 0.2%CVE-2025-35032MEDIUMMedical Informatics Engineering Enterprise Health arbitrary file uploadEPSS 0.2%CVE-2025-66074CRITICALWordPress WP Webhooks plugin <= 3.3.8 - Arbitrary File Upload vulnerabilityEPSS 0.2%CVE-2025-12344MEDIUMYonyou U8 Cloud Request Header NCloudGatewayServlet unrestricted uploadEPSS 0.2%CVE-2025-54962MEDIUM/edit-user in webserver in OpenPLC Runtime 3 through 9cd8f1b allows authenticated users to upload arbitrary files (such as .html or .svg), aEPSS 0.2%CVE-2026-2183MEDIUMGreat Developers Certificate Generation System csv.php unrestricted uploadEPSS 0.2%CVE-2025-13198MEDIUMDouPHP file.class.php unrestricted uploadEPSS 0.2%CVE-2022-45415HIGHWhen downloading an HTML file, if the title of the page was formatted as a filename with a malicious extension, Firefox may have saved the fEPSS 0.2%CVE-2026-7578MEDIUMMacCMS Pro Plugin Installation add.html install unrestricted uploadEPSS 0.2%CVE-2025-2350MEDIUMIROAD Dash Cam FX2 upload_file unrestricted uploadEPSS 0.2%CVE-2025-0057MEDIUMCross-Site Scripting vulnerability in SAP NetWeaver AS JAVA (User Admin Application)EPSS 0.2%CVE-2026-29104LOWSuiteCRM Vulnerable to Authenticated Arbitrary File Upload via Configurator addfontresult View in SuiteCRMEPSS 0.2%CVE-2026-22789MEDIUMWebErpMesv2 has a File Upload Validation Bypass Leading to RCEEPSS 0.2%CVE-2026-42879MEDIUMFacturaScripts: Authenticated Remote Code Execution (RCE) via GIF Image Upload in Product ImagesEPSS 0.2%