Falhas do tipo CWE-434

2.799 resultados
CVE-2024-10960CRITICALBrizy – Page Builder <= 2.6.4 - Authenticated (Contributor+) Arbitrary File Upload via storeUploadsEPSS 0.9%CVE-2022-41681CRITICALFile Upload vulnerability in Forma LMSEPSS 0.9%CVE-2023-28699HIGHWADE DIGITAL DESIGN CO, LTD. FANTSY - Arbitrary File UploadEPSS 0.9%CVE-2024-31286CRITICALWordPress WP Photo Album Plus plugin < 8.6.03.005 - Arbitrary File Upload vulnerabilityEPSS 0.9%CVE-2023-1744MEDIUMIBOS htaccess unrestricted uploadEPSS 0.9%CVE-2023-50922HIGHAn issue was discovered on GL.iNet devices through 4.5.0. Attackers who are able to steal the AdminToken cookie can execute arbitrary code bEPSS 0.9%CVE-2025-47187HIGHA vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones through 6.4 SP4 (R6.4.0.4006), and the 6970 Conference UnEPSS 0.9%CVE-2020-22539HIGHAn arbitrary file upload vulnerability in the Add Category function of Codoforum v4.9 allows attackers to execute arbitrary code via uploadiEPSS 0.9%CVE-2024-58282HIGHSerendipity 2.5.0 Remote Code Execution via Authenticated Media UploadEPSS 0.9%CVE-2023-43226HIGHAn arbitrary file upload vulnerability in dede/baidunews.php in DedeCMS 5.7.111 and earlier allows attackers to execute arbitrary code via uEPSS 0.9%CVE-2017-7429HIGHFix for NetIQ shell code uploadEPSS 0.9%CVE-2025-13516HIGHSureMail – SMTP and Email Logs Plugin with Amazon SES, Postmark, and Other Providers <= 1.9.0 - Unauthenticated Arbitrary File UploadEPSS 0.9%CVE-2024-4500MEDIUMSourceCodester Prison Management System edit-photo.php unrestricted uploadEPSS 0.9%CVE-2025-13597CRITICALAI Feeds <= 1.0.11 - Unauthenticated Arbitrary File UploadEPSS 0.9%CVE-2025-13595CRITICALCIBELES AI <= 1.10.8 - Unauthenticated Arbitrary File UploadEPSS 0.9%CVE-2024-3948MEDIUMSourceCodester Home Clean Service System Photo student.add.php unrestricted uploadEPSS 0.9%CVE-2024-1644CRITICALSuite CRM v7.14.2 - RCE via Local File InclusionEPSS 0.9%CVE-2023-1684MEDIUMHadSky unrestricted uploadEPSS 0.9%CVE-2024-3229CRITICALSalon Booking System <= 10.2 - Unauthenticated Arbitrary File UploadEPSS 0.9%CVE-2024-1875MEDIUMSourceCodester Complaint Management System Lodge Complaint Section register-complaint.php unrestricted uploadEPSS 0.9%