CWE-434
Medium likelihoodUnrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
4,018 vulnerabilities with CWE-434
CVE-2022-40932
HIGH
Zoo Management System v1.0 - File Upload
CVSS 7.2
CVE-2022-40217
MEDIUM
Xplodedthemes Wpide < 2.6 - Unrestricted File Upload
CVSS 6.5
CVE-2022-36386
CRITICAL
Soflyy Import <3.6.7 - RCE
CVSS 9.1
CVE-2022-2872
MEDIUM
GitHub octoprint/octoprint <1.8.3 - File Injection
CVSS 5.4
CVE-2022-38916
CRITICAL
Pagekit <1.0.18 - File Upload Vulnerability
CVSS 9.8
CVE-2022-40432
CRITICAL
D8s-strings - Unrestricted File Upload
CVSS 9.8
CVE-2022-40431
CRITICAL
D8s-pdfs - Unrestricted File Upload
CVSS 9.8
CVE-2022-38887
CRITICAL
d8s-python <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-38886
CRITICAL
d8s-xml <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-38885
CRITICAL
d8s-netstrings <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-38884
CRITICAL
d8s-grammars <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-38883
CRITICAL
d8s-math <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-38882
CRITICAL
d8s-json <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-38881
CRITICAL
Python d8s-archives <0.1.0 - RCE
CVSS 9.8
CVE-2022-38877
HIGH
Garage Management System v1.0 - RCE
CVSS 7.2
CVE-2022-38843
HIGH
EspoCRM <7.1.8 - Code Injection
CVSS 8.8
CVE-2022-38323
HIGH
Event Management System v1.0 - RCE
CVSS 7.2
CVE-2022-37140
HIGH
Techvill Paymoney - Unrestricted File Upload
CVSS 8.0
CVE-2022-36667
HIGH
Garage Management System - Unrestricted File Upload
CVSS 8.8
CVE-2022-38305
HIGH
AeroCMS v0.0.1 - Code Injection
CVSS 8.8
CVE-2022-38296
CRITICAL
Cuppa CMS v1.0 - File Upload
CVSS 9.8
CVE-2022-3129
MEDIUM
Online Driving School Project - Unrestricted File Upload
CVSS 6.3
CVE-2022-36582
HIGH
Garage Management System <1.0 - RCE
CVSS 7.2
CVE-2022-36580
HIGH
Online Ordering System <v2.3.2 - RCE
CVSS 7.2
CVE-2022-37184
HIGH
Garage Management System - Unrestricted File Upload
CVSS 8.8
Details
Vulnerabilities
4,018
Exploit Likelihood
Medium