CWE-434

Medium likelihood

Unrestricted Upload of File with Dangerous Type

Parent: CWE-669 - Incorrect Resource Transfer Between Spheres

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

4,130 vulnerabilities with CWE-434
CVE-2021-39146 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
CVSS 8.5
CVE-2021-39145 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
CVSS 8.5
CVE-2021-39141 HIGH
XStream < 1.4.18 - Remote Code Execution via Deserialization
CVSS 8.5
CVE-2021-39139 HIGH
XStream < 1.4.18 - Remote Code Execution via Untrusted Data Deserialization
CVSS 8.5
CVE-2021-37608 CRITICAL
Apache OFBiz < 17.12.08 - Unrestricted Upload of File with Dangerous Type
CVSS 9.8
CVE-2021-22937 HIGH
Pulse Connect Secure <9.1R12 - Privilege Escalation
CVSS 7.2
CVE-2021-38753 CRITICAL
Simple Image Gallery Web App - Code Injection
CVSS 9.8
CVE-2021-29377 CRITICAL
Pear Admin Think <= 2.1.2 - Remote Code Execution via File Upload
CVSS 9.8
CVE-2021-38366 HIGH
Sitecore < 10.1 - Authenticated Remote Code Execution via Update Center File Upload
CVSS 8.8
CVE-2021-38305 HIGH
23andMe Yamale < 3.0.8 - Remote Code Execution via Schema File Eval Injection
CVSS 7.8
CVE-2021-24499 CRITICAL
Workreap < 2.2.2 - Unauthenticated Arbitrary File Upload via AJAX Temp File Uploader
CVSS 9.8
CVE-2021-34639 HIGH
WordPress Download Manager <3.1.24 - Authenticated File Upload
CVSS 7.5
CVE-2021-32594 MEDIUM
FortiPortal 4.0.0-4.0.3, 4.2.0-4.2.2, 5.2.0-5.2.5, 5.3.0-5.3.5, 6.0.0-6.0.4 - Unrestricted File Upload via Web Interface
CVSS 5.4
CVE-2021-36623 CRITICAL
Sourcecodester Phone Shop Sales Management System 1.0 - RCE
CVSS 9.8
CVE-2021-36622 CRITICAL
Online Covid Vaccination Scheduler System 1.0 - Arbitrary File Upload via Admin Profile Photo
CVSS 9.8
CVE-2021-25200 CRITICAL
SourceCodester Learning Management System <1.0 - RCE
CVSS 9.8
CVE-2021-36741 HIGH KEV
Trend Micro Apex One, OfficeScan XG, and Worry-Free Business Security - Authenticated Arbitrary File Upload
CVSS 8.8
CVE-2021-37444 HIGH
NCH IVM Attendant < 5.12 - Path Traversal and Remote Code Execution via Plugin ZIP Upload
CVSS 8.8
CVE-2021-25208 CRITICAL
SourceCodester Travel Management System <1.0 - RCE
CVSS 9.8
CVE-2021-25206 CRITICAL
SourceCodester Responsive Ordering System <1.0 - RCE
CVSS 9.8
CVE-2021-25203 CRITICAL
Victor CMS 1.0 - Arbitrary File Upload via admin_add_post.php
CVSS 9.8
CVE-2021-25207 CRITICAL
SourceCodester E-Commerce Website <1.0 - Code Injection
CVSS 9.8
CVE-2021-25211 CRITICAL
SourceCodester Ordering System <1.0 - RCE
CVSS 9.8
CVE-2021-25210 CRITICAL
SourceCodester Alumni Management System <1.0 - RCE
CVSS 9.8
CVE-2021-34619 HIGH
Stock Manager for WooCommerce <= 2.5.7 - Cross-Site Request Forgery to Arbitrary File Upload via Import-Export
CVSS 8.8
Details
Vulnerabilities 4,130
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits