Falhas do tipo CWE-434

2.804 resultados
CVE-2025-5012HIGHWorkreap <= 3.3.2 - Authenticated (Subscriber+) Arbitrary File Upload via 'workreap_temp_upload_to_media'EPSS 0.5%CVE-2026-5573MEDIUMTechnostrobe HI-LED-WR120-G2 fs unrestricted uploadEPSS 0.5%CVE-2023-5227MEDIUMUnrestricted Upload of File with Dangerous Type in thorsten/phpmyfaqEPSS 0.5%CVE-2026-1730HIGHOS DataHub Maps <= 1.8.3 - Authenticated (Author+) Arbitrary File UploadEPSS 0.5%CVE-2025-13536HIGHBlubrry PowerPress <= 11.15.2 - Authenticated (Contributor+) Arbitrary File Upload via 'powerpress_edit_post'EPSS 0.5%CVE-2020-36882HIGHFlexsense DiskBoss Application Crash Denial of ServiceEPSS 0.5%CVE-2024-10765MEDIUMCodezips Online Institute Management System profile.php unrestricted uploadEPSS 0.5%CVE-2024-41913HIGHClariti Manager – Arbitrary File UploadEPSS 0.5%CVE-2024-10764MEDIUMCodezips Online Institute Management System save_user.php unrestricted uploadEPSS 0.5%CVE-2023-4559MEDIUMBettershop LaikeTui POST Request unrestricted uploadEPSS 0.5%CVE-2022-2744MEDIUMSourceCodester Gym Management System Background Management add_exercises.php unrestricted uploadEPSS 0.5%CVE-2023-33930CRITICALWordPress Unlimited Elements For Elementor plugin <= 1.5.66 - Unrestricted Zip Extraction vulnerabilityEPSS 0.5%CVE-2018-25388HIGHHaPe PKH 1.1 Arbitrary File Upload via aksi_foto.phpEPSS 0.5%CVE-2025-6079HIGHSchool Management System <= 93.2.0 - Authenticated (Student+) Arbitrary File UploadEPSS 0.5%CVE-2024-7944MEDIUMitsourcecode Laravel Property Management System DocumentsController.php UpdateDocumentsRequest unrestricted uploadEPSS 0.5%CVE-2024-12956MEDIUM1000 Projects Portfolio Management System MCA add_achievement_details.php unrestricted uploadEPSS 0.5%CVE-2024-25623HIGHLack of media type verification of Activity Streams objects allows impersonation of remote accountsEPSS 0.5%CVE-2025-41735HIGHPossible arbitrary file uploadEPSS 0.5%CVE-2024-34990CRITICALIn the module "Help Desk - Customer Support Management System" (helpdesk) up to version 2.4.0 from FME Modules for PrestaShop, a customer caEPSS 0.5%CVE-2025-11318MEDIUMTipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 uploadWxFile.do unrestricted uploadEPSS 0.5%