CWE-434

4,021 vulnerabilities with CWE-434

CVE-2019-16192 CRITICAL

DocCms 2016.5.17 - RCE

CVSS 9.8

CVE-2019-16131 HIGH

OKLite <1.2.25 - Code Injection

CVSS 8.8

CVE-2019-13187 CRITICAL

Symphonyextensions Rich Text Formatter - Unrestricted File Upload

CVSS 9.8

CVE-2019-13976 CRITICAL

eGain Chat 15.0.3 - Info Disclosure

CVSS 9.8

CVE-2019-15813 HIGH

Sentrifugo 3.2 - RCE

CVSS 8.8

CVE-2019-15866 HIGH

WordPress <1.3.5 - File Upload

CVSS 8.8

CVE-2019-15649 HIGH

Elearningfreak Insert OR Embed Articu... - Unrestricted File Upload

CVSS 8.8

CVE-2019-15524 CRITICAL

Cszcms Csz Cms - Unrestricted File Upload

CVSS 9.8

CVE-2019-11031 CRITICAL

Mirasys Vms < 7.6.1 - Unrestricted File Upload

CVSS 9.8

CVE-2019-15091 CRITICAL

Artica Integria Ims - Unrestricted File Upload

CVSS 9.8

CVE-2019-14755 HIGH

Leaftecnologia Leaf Admin - Unrestricted File Upload

CVSS 8.8

CVE-2019-5395 HIGH

HPE 3PAR Service Processor <5.0.5.1 - RCE

CVSS 8.8

CVE-2019-14748 MEDIUM

Osticket < 1.10.7 - XSS

CVSS 5.4

CVE-2019-7930 HIGH

Magento <2.1.18-2.3.2 - RCE

CVSS 7.2

CVE-2019-7912 HIGH

Magento <2.1.18-2.3.2 - Auth Bypass

CVSS 7.2

CVE-2019-7861 HIGH

Magento <2.1.18-2.3.2 - Auth Bypass

CVSS 7.5

CVE-2019-3960 HIGH

Wallaceit Wallacepos - Unrestricted File Upload

CVSS 7.2

CVE-2019-10267 HIGH

Ahsay Cloud Backup Suite < 8.1.1.50 - Unrestricted File Upload

CVSS 8.8

CVE-2019-1010209 HIGH

GoUrl.io GoURL Wordpress Plugin <1.4.14 - Unauthenticated RCE

CVSS 7.5

CVE-2019-1010123 HIGH

MODX Revolution Gallery 1.7.0 - Unrestricted Upload

CVSS 7.5

CVE-2019-12326 HIGH

Akuvox R50P VoIP phone <50.0.6.156 - Code Injection

CVSS 7.2

CVE-2019-13984 HIGH

Directus 7 API <2.3.0 - Info Disclosure

CVSS 8.8

CVE-2019-13980 HIGH

Directus 7 <2.3.0 - RCE

CVSS 8.8

CVE-2019-13979 HIGH

Directus 7 <2.2.1 - RCE

CVSS 8.8

CVE-2019-13973 CRITICAL

LayerBB 1.1.3 - File Upload

CVSS 9.8