CWE-434
Medium likelihoodUnrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
4,018 vulnerabilities with CWE-434
CVE-2020-19786
HIGH
Cszcms Csz Cms - Unrestricted File Upload
CVSS 8.8
CVE-2020-20588
HIGH
Ibarn - Unrestricted File Upload
CVSS 8.8
CVE-2020-23591
CRITICAL
OPTILINK OP-XT71000N V2.2 - File Upload
CVSS 9.8
CVE-2020-8974
CRITICAL
Zigor Zgr Tps200 NG Firmware - Unrestricted File Upload
CVSS 10.0
CVE-2020-21516
CRITICAL
Feehicms < 2.0.8.1 - Unrestricted File Upload
CVSS 9.8
CVE-2020-19228
HIGH
Bludit <3.13.0 - Code Injection
CVSS 7.2
CVE-2020-28062
HIGH
Hisiphp - Unrestricted File Upload
CVSS 7.2
CVE-2020-26008
HIGH
Shopxo - Unrestricted File Upload
CVSS 7.8
CVE-2020-26007
HIGH
Shopxo - Unrestricted File Upload
CVSS 7.8
CVE-2020-13675
CRITICAL
Drupal < 8.9.19 - Improper Access Control
CVSS 9.8
CVE-2020-29176
HIGH
Z-BlogPHP <1.6.1.2100 - RCE
CVSS 7.8
CVE-2020-23572
HIGH
BEESCMS v4.0 - Code Injection
CVSS 8.8
CVE-2020-18261
CRITICAL
ED01-CMS v1.0 - Command Injection
CVSS 9.8
CVE-2020-36485
HIGH
Madeportable Playable - Unrestricted File Upload
CVSS 7.8
CVE-2020-23043
HIGH
Tran Tu Air Sender v1.0.2 - Code Injection
CVSS 8.8
CVE-2020-20691
MEDIUM
Monstra Cms - Unrestricted File Upload
CVSS 6.5
CVE-2020-21483
HIGH
Jizhicms - Unrestricted File Upload
CVSS 7.2
CVE-2020-21481
HIGH
Rgcms - Unrestricted File Upload
CVSS 7.2
CVE-2020-21322
CRITICAL
Feehicms < 2.0.8 - Unrestricted File Upload
CVSS 9.8
CVE-2020-20672
HIGH
Kitesky Kitecms - Unrestricted File Upload
CVSS 7.8
CVE-2020-20670
HIGH
Zkeacms - Unrestricted File Upload
CVSS 8.8
CVE-2020-19267
CRITICAL
Dswjcms 1.6.4 - RCE
CVSS 9.8
CVE-2020-19138
CRITICAL
DotCMS <5.2.3 - RCE
CVSS 9.8
CVE-2020-18114
CRITICAL
DedeCMS V5.7SP2 - File Upload
CVSS 9.8
CVE-2020-27461
HIGH
SEOPanel <4.7.0 - RCE
CVSS 8.8
Details
Vulnerabilities
4,018
Exploit Likelihood
Medium