Falhas do tipo CWE-434

2.804 resultados
CVE-2026-41938HIGHVvveb < 1.0.8.2 RCE via Media Upload HandlerEPSS 0.5%CVE-2024-57450CRITICALChestnutCMS <=1.5.0 is vulnerable to File Upload via the Create template function.EPSS 0.5%CVE-2021-24490Email Artillery <= 4.1 - Arbitrary File UploadEPSS 0.5%CVE-2024-54525HIGHA logic issue was addressed with improved file handling. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2, tvOS 18.2, visEPSS 0.5%CVE-2023-7330CRITICALRuijie Networks NBR Routers Unauthenticated Arbitrary File Upload via fileupload.phpEPSS 0.5%CVE-2024-46625HIGHAn authenticated arbitrary file upload vulnerability in the /documentCache/upload endpoint of InfoDom Performa 365 v4.0.1 allows attackers tEPSS 0.5%CVE-2023-42803MEDIUMBigBlueButton Unrestricted File Upload vulnerabilityEPSS 0.5%CVE-2025-57795CRITICALUnauthenticated Remote File Download in Explorance BlueEPSS 0.5%CVE-2025-9112HIGHDoccure <= 1.5.0 - Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.5%CVE-2024-37418CRITICALWordPress Church Admin plugin <= 4.4.6 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2023-53871MEDIUMSoosyze 2.0.0 Unrestricted File Upload via Broken Upload LogicEPSS 0.5%CVE-2024-49658CRITICALWordPress Woocommerce Custom Profile Picture plugin <= 1.0 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2023-51412CRITICALWordPress Piotnet Forms Plugin <= 1.0.25 is vulnerable to Arbitrary File UploadEPSS 0.5%CVE-2025-63601CRITICALSnipe-IT before version 8.3.3 contains a remote code execution vulnerability that allows an authenticated attacker to upload a malicious bacEPSS 0.5%CVE-2025-13376HIGHProjectList <= 0.3.0 - Authenticated (Editor+) Arbitrary File UploadEPSS 0.5%CVE-2025-12775HIGHWP Dropzone <= 1.1.0 - Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.5%CVE-2025-14532CRITICALRemote Code Execution via Unrestricted File Upload in DobryCMSEPSS 0.5%CVE-2023-48275HIGHWordPress Widgets for Google Reviews plugin <= 11.0.2 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2025-11657MEDIUMProjectsAndPrograms School Management System createNotice.php unrestricted uploadEPSS 0.5%CVE-2025-11656MEDIUMProjectsAndPrograms School Management System editNotes.php unrestricted uploadEPSS 0.5%