CWE-434

4,018 vulnerabilities with CWE-434

CVE-2021-24960 MEDIUM

WordPress File Upload <4.16.3 - XSS

CVSS 5.4

CVE-2021-24216 HIGH

Servmask One-stop WP Migration < 7.41 - Unrestricted File Upload

CVSS 7.2

CVE-2021-44664 HIGH

Xerte < 3.9 - Path Traversal

CVSS 8.8

CVE-2021-44967 HIGH

Limesurvey - Unrestricted File Upload

CVSS 8.8

CVE-2021-46036 CRITICAL

MCMS <5.2.4 - RCE

CVSS 9.8

CVE-2021-22803 CRITICAL

Interactive Graphical SCADA System Data Collector <15.0.0.21243 - RCE

CVSS 9.8

CVE-2021-37194 HIGH

Siemens Comos < 10.3.3.3 - Unrestricted File Upload

CVSS 7.5

CVE-2021-46360 HIGH

Composr-CMS <10.0.39 - Authenticated RCE

CVSS 8.8

CVE-2021-24947 MEDIUM

RVM WordPress <6.4.2 - Info Disclosure

CVSS 6.5

CVE-2021-46428 CRITICAL

Sourcecodester Simple Chatbot App <1.0 - RCE

CVSS 9.8

CVE-2021-46097 HIGH

Dolphinphp v1.5.0 - RCE

CVSS 8.8

CVE-2021-46386 CRITICAL

mingSoft MCMS <5.2.5 - RCE

CVSS 9.8

CVE-2021-46116 HIGH

jpress 4.2.0 - RCE

CVSS 7.2

CVE-2021-46115 HIGH

jpress 4.2.0 - RCE

CVSS 7.2

CVE-2021-44123 HIGH

Spip - Unrestricted File Upload

CVSS 8.8

CVE-2021-46033 CRITICAL

ForestBlog <2021-12-28 - Auth Bypass

CVSS 9.8

CVE-2021-46113 HIGH

MartDevelopers KEA-Hotel-ERP <12-31-2021 - RCE

CVSS 8.8

CVE-2021-45808 HIGH

jpress 4.2.0 - Code Injection

CVSS 8.8

CVE-2021-46013 CRITICAL

Sourcecodester Free school management software 1.0 - RCE

CVSS 9.8

CVE-2021-41550 HIGH

Leostream Connection Broker - Unrestricted File Upload

CVSS 7.2

CVE-2021-38697 CRITICAL

SoftVibe SARABAN for INFOMA 1.1 - RCE

CVSS 9.8

CVE-2021-33828 HIGH

Owncloud Files Antivirus < 1.0.0 - Unrestricted File Upload

CVSS 8.8

CVE-2021-34997 HIGH

Commvault Commcell - Unrestricted File Upload

CVSS 8.8

CVE-2021-34995 HIGH

Commvault Commcell - Unrestricted File Upload

CVSS 8.8

CVE-2021-45411 CRITICAL

Printable Staff ID Card Creator System - Unrestricted File Upload

CVSS 9.8