Falhas do tipo CWE-434

2.804 resultados
CVE-2024-31161HIGHASUS Download Master - Arbitrary File UploadEPSS 0.5%CVE-2023-48275HIGHWordPress Widgets for Google Reviews plugin <= 11.0.2 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2025-11657MEDIUMProjectsAndPrograms School Management System createNotice.php unrestricted uploadEPSS 0.5%CVE-2026-40412CRITICALAzure Orbital Spatio Remote Code Execution VulnerabilityEPSS 0.5%CVE-2025-32206CRITICALWordPress Processing Projects Plugin <= 1.0.2 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2025-3234HIGHFile Manager Pro – Filester <= 1.8.8 - Authenticated (Administrator+) Arbitrary File UploadEPSS 0.5%CVE-2025-8255MEDIUMcode-projects Exam Form Submission register.php unrestricted uploadEPSS 0.5%CVE-2024-45398HIGHRemote command execution through file upload in contao/core-bundleEPSS 0.5%CVE-2025-26892CRITICALWordPress Celestial Aura plugin <= 2.2 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2024-12478MEDIUMInvoicePlane 1 upload_file unrestricted uploadEPSS 0.5%CVE-2025-0346MEDIUMcode-projects Content Management System Publish News Page publishnews.php unrestricted uploadEPSS 0.5%CVE-2024-56057CRITICALWordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2024-37228CRITICALWordPress InstaWP Connect plugin <= 0.1.0.38 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2025-14849HIGHAdvantech WebAccess/SCADA Unrestricted Upload of File with Dangerous TypeEPSS 0.5%CVE-2025-4102HIGHBeaver Builder Plugin (Starter Version) <= 2.9.1 - Authenticated (Administrator+) Arbitrary File UploadEPSS 0.5%CVE-2024-49330CRITICALWordPress Nice Backgrounds plugin <= 1.0 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2024-49611CRITICALWordPress Product Website Showcase plugin <= 1.0 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2025-11675HIGHRagic|Enterprise Cloud Database - Arbitrary File UploadEPSS 0.5%CVE-2025-51056HIGHAn unrestricted file upload vulnerability in Vedo Suite version 2024.17 allows remote authenticated attackers to write to arbitrary filesystEPSS 0.5%CVE-2022-0912MEDIUMUnrestricted Upload of File with Dangerous Type in microweber/microweberEPSS 0.5%