CWE-434

4,019 vulnerabilities with CWE-434

CVE-2020-17452 HIGH

flatCore <1.5.7 - Code Injection

CVSS 7.2

CVE-2020-14488 HIGH

Freemedsoftware Openclinic GA - Unrestricted File Upload

CVSS 8.8

CVE-2020-11476 HIGH

Concretecms Concrete Cms < 8.5.3 - Unrestricted File Upload

CVSS 7.2

CVE-2020-9309 HIGH

Silverstripe Mimevalidator < 2.0.0 - Unrestricted File Upload

CVSS 8.8

CVE-2020-14066 HIGH

Icewarp Mail Server - Unrestricted File Upload

CVSS 8.8

CVE-2020-14065 MEDIUM

Icewarp Mail Server - Unrestricted File Upload

CVSS 6.5

CVE-2020-12854 HIGH

SecZetta NEProfile <3.3.11 - RCE

CVSS 8.8

CVE-2020-1469 HIGH

.NET - DoS

CVSS 7.5

CVE-2020-8181 MEDIUM

Nextcloud Contacts <3.2.0 - Info Disclosure

CVSS 4.3

CVE-2020-13994 HIGH

Mods-for-hesk Mods For Hesk < 2019.1.0 - Unrestricted File Upload

CVSS 8.8

CVE-2020-13443 HIGH

ExpressionEngine <5.3.2 - RCE

CVSS 8.8

CVE-2020-13887 HIGH

Kordil Edms < 2.2.60 - Unrestricted File Upload

CVSS 8.8

CVE-2020-8162 HIGH

Rails <5.2.4.2, <6.0.3.1 - Info Disclosure

CVSS 7.5

CVE-2020-12005 HIGH

Rockwellautomation Factorytalk Linx - Unrestricted File Upload

CVSS 7.5

CVE-2020-4470 HIGH

IBM Spectrum Protect Plus < 10.1.5 - Unrestricted File Upload

CVSS 8.0

CVE-2020-14067 CRITICAL

Naviwebs Navigatecms - Unrestricted File Upload

CVSS 9.8

CVE-2020-13855 HIGH

Pandorafms Pandora Fms - Unrestricted File Upload

CVSS 7.2

CVE-2020-13852 HIGH

Pandorafms Pandora Fms - Unrestricted File Upload

CVSS 7.2

CVE-2020-12800 CRITICAL

Wordpress Drag and Drop Multi File Uploader RCE

CVSS 9.8

CVE-2020-12846 HIGH

Zimbra <8.8.15 Patch 10 & 9.x <9.0.0 Patch 3 - RCE

CVSS 8.0

CVE-2020-12675 HIGH

mappress-google-maps-for-wordpress <2.54.6 - RCE

CVSS 8.8

CVE-2020-13442 CRITICAL

DEXT5 <2.7.1402870 - RCE

CVSS 9.8

CVE-2020-13384 HIGH

Monstra CMS 3.0.4 - Code Injection

CVSS 8.8

CVE-2020-1112 CRITICAL

Microsoft Windows 10 - Unrestricted File Upload

CVSS 9.9

CVE-2020-1102 HIGH

Microsoft Sharepoint Enterprise Server - Unrestricted File Upload

CVSS 8.8