CWE-434
Medium likelihoodUnrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
4,018 vulnerabilities with CWE-434
CVE-2021-4457
CRITICAL
Digitalzoomstudio Zoomsounds < 6.05 - Unrestricted File Upload
CVSS 9.1
CVE-2021-4455
CRITICAL
Smart Product Review <1.0.4 - RCE
CVSS 9.8
CVE-2021-4449
CRITICAL
Digitalzoomstudio Zoomsounds < 5.96 - Unrestricted File Upload
CVSS 9.8
CVE-2021-4443
CRITICAL
WordPress Mega Menu <2.0.6 - RCE
CVSS 9.8
CVE-2021-35002
HIGH
BMC Track-it! - Unrestricted File Upload
CVSS 8.8
CVE-2021-4436
CRITICAL
Wp3dprinting 3dprint Lite < 1.9.1.5 - Unrestricted File Upload
CVSS 9.8
CVE-2021-31314
CRITICAL
Ejinshan Terminal Security System - Unrestricted File Upload
CVSS 9.8
CVE-2021-4382
HIGH
Recently < 3.0.5 - Unrestricted File Upload
CVSS 8.8
CVE-2021-4354
HIGH
PWA for WP & AMP <1.7.32 - File Upload
CVSS 8.8
CVE-2021-34076
HIGH
Phpok - Unrestricted File Upload
CVSS 8.8
CVE-2021-28998
HIGH
Cmsmadesimple Cms Made Simple < 2.2.15 - Unrestricted File Upload
CVSS 7.2
CVE-2021-27280
HIGH
Mblog <3.5.0 - Command Injection
CVSS 7.8
CVE-2021-3267
HIGH
KiteCMS 1.1 - RCE
CVSS 7.2
CVE-2021-31707
CRITICAL
Kitesky Kitecms - Unrestricted File Upload
CVSS 9.8
CVE-2021-33352
CRITICAL
Wyomind Help Desk Magento 2 <1.3.7 - RCE
CVSS 9.8
CVE-2021-4330
HIGH
Envato Elements & Download - Path Traversal
CVSS 8.8
CVE-2021-35290
HIGH
Balerocms-src 0.8.3 - RCE
CVSS 7.2
CVE-2021-33224
CRITICAL
Umbraco Forms <8.7.0 - RCE
CVSS 9.8
CVE-2021-35261
CRITICAL
Bearadmin - Unrestricted File Upload
CVSS 9.8
CVE-2021-36426
HIGH
phpwcms <1.9.25 - RCE
CVSS 8.8
CVE-2021-41231
HIGH
OpenMage LTS <20.0.19 - RCE
CVSS 7.2
CVE-2021-26642
HIGH
Xpressengine < 3.0.14 - Unrestricted File Upload
CVSS 8.8
CVE-2021-43258
HIGH
ChurchInfo <1.3.0 - RCE
CVSS 8.8
CVE-2021-38397
CRITICAL
Honeywell Experion PKS - RCE
CVSS 10.0
CVE-2021-45790
CRITICAL
Metersphere <1.15.4 - File Upload
CVSS 9.8
Details
Vulnerabilities
4,018
Exploit Likelihood
Medium