Falhas do tipo CWE-434

2.804 resultados
CVE-2023-25922MEDIUMIBM Security Guardium Key Lifecycle Manager file uploadEPSS 0.6%CVE-2023-24530HIGHSAP BusinessObjects Business Intelligence Platform (CMC) - versions 420, 430, allows an authenticated admin user to upload malicious code thEPSS 0.6%CVE-2024-46210HIGHAn arbitrary file upload vulnerability in the MediaPool module of Redaxo CMS v5.17.1 allows attackers to execute arbitrary code via uploadinEPSS 0.6%CVE-2026-35047CRITICALBrave CMS has Unrestricted File Upload in BraveCMS via CKEditor EndpointEPSS 0.6%CVE-2026-4808HIGHGerador de Certificados – DevApps <= 1.3.6 - Authenticated (Administrator+) Arbitrary File UploadEPSS 0.6%CVE-2025-2115MEDIUMzzskzy Warehouse Refinement Management System AcceptZip.ashx ProcessRequest unrestricted uploadEPSS 0.6%CVE-2026-3459HIGHDrag and Drop Multiple File Upload for Contact Form 7 <= 1.3.9.5 - Unauthenticated Arbitrary File UploadEPSS 0.6%CVE-2024-2636CRITICALMultiple vulnerabilities on Meta4 HR from CegidEPSS 0.6%CVE-2024-11000MEDIUMCodeAstro Real Estate Management System About Us Page aboutedit.php unrestricted uploadEPSS 0.6%CVE-2024-13191MEDIUMZeroWdd myblog uploadController.java upload unrestricted uploadEPSS 0.6%CVE-2024-10999MEDIUMCodeAstro Real Estate Management System About Us Page aboutadd.php unrestricted uploadEPSS 0.6%CVE-2025-6086HIGHCSV Me <= 2.0 - Authenticated (Administrator+) Arbitrary File UploadEPSS 0.6%CVE-2026-28274HIGHInitiative Vulnerable to Token Theft via Stored XSS in Document UploadsEPSS 0.6%CVE-2024-8330HIGHGether Technology 6SHR System - Unrestricted File UploadEPSS 0.5%CVE-2023-51806HIGHFile Upload vulnerability in Ujcms v.8.0.2 allows a local attacker to execute arbitrary code via a crafted file.EPSS 0.5%CVE-2025-57794CRITICALUnrestricted File Upload Vulnerability in Explorance BlueEPSS 0.5%CVE-2025-8120CRITICALRemote Code Execution via Unrestricted File Upload in PAD CMSEPSS 0.5%CVE-2024-32809CRITICALWordPress ActiveDEMAND plugin <= 0.2.41 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2024-8164MEDIUMChengdu Everbrite Network Technology BeikeShop FileManagerController.php rename unrestricted uploadEPSS 0.5%CVE-2026-11419CRITICALPath Traversal in Altium Enterprise Server Vault UploadController Allows Arbitrary File WriteEPSS 0.5%