Falhas do tipo CWE-434
2.799 resultadosCVE-2024-1875MEDIUMSourceCodester Complaint Management System Lodge Complaint Section register-complaint.php unrestricted uploadEPSS 0.9%CVE-2022-44401CRITICALOnline Tours & Travels Management System v1.0 contains an arbitrary file upload vulnerability via /tour/admin/file.php.EPSS 0.9%CVE-2022-40050CRITICALZFile v4.1.1 was discovered to contain an arbitrary file upload vulnerability via the component /file/upload/1.EPSS 0.9%CVE-2023-1720CRITICALBitrix24 Stored Cross-Site Scripting (XSS) via File UploadEPSS 0.9%CVE-2024-31345CRITICALWordPress Auto Poster plugin <= 1.2 - Arbitrary File Upload vulnerabilityEPSS 0.9%CVE-2024-56828CRITICALFile Upload vulnerability in ChestnutCMS through 1.5.0. Based on the code analysis, it was determined that the /api/member/avatar API endpoiEPSS 0.9%CVE-2025-1980HIGHRemote Code Execution via Unrestricted File Upload in Ready_EPSS 0.8%CVE-2024-12853HIGHModula Image Gallery <= 2.11.10 - Authenticated (Author+) Arbitrary File UploadEPSS 0.8%CVE-2025-20354CRITICALCisco Unified Contact Center Express Remote Code Execution VulnerabilityEPSS 0.8%CVE-2024-51366CRITICALAn arbitrary file upload vulnerability in the component \Roaming\Omega of OmegaT v6.0.1 allows attackers to execute arbitrary code via uploaEPSS 0.8%CVE-2026-3891CRITICALPix for WooCommerce <= 1.5.0 - Unauthenticated Arbitrary File UploadEPSS 0.8%CVE-2023-6102MEDIUMMaiwei Safety Production Control Platform unrestricted uploadEPSS 0.8%CVE-2025-2525HIGHStreamit <= 4.0.1 - Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.8%CVE-2023-47706MEDIUMIBM Security Guardium Key Lifecycle Manager file uploadEPSS 0.8%CVE-2026-2743CRITICALSEPPmail User Web Interface Arbitrary File Write to RCEEPSS 0.8%CVE-2024-56264MEDIUMWordPress ACF City Selector plugin <= 1.14.0 - Arbitrary File Upload vulnerabilityEPSS 0.8%CVE-2025-54082HIGHnova-tiptap has an Unauthenticated Arbitrary File Upload VulnerabilityEPSS 0.8%CVE-2023-6850MEDIUMkalcaddle KodExplorer API Endpoint unrestricted uploadEPSS 0.8%CVE-2022-0960CRITICALStored XSS viva .properties file upload in star7th/showdocEPSS 0.8%CVE-2024-13359HIGHProduct Input Fields for WooCommerce <= 1.12.0 - Unauthenticated Limited File UploadEPSS 0.8%