CWE-434

Medium likelihood

Unrestricted Upload of File with Dangerous Type

Parent: CWE-669 - Incorrect Resource Transfer Between Spheres

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

4,133 vulnerabilities with CWE-434
CVE-2018-1000839 HIGH
LibreHealth EHR REL-2_0_0 - Remote Code Execution via Profile Picture Upload
CVSS 8.8
CVE-2018-1000811 HIGH
Bludit 3.0.0 - Unrestricted Upload of File with Dangerous Type in Pages Editor
CVSS 8.8
CVE-2018-19789 MEDIUM
Symfony 2.7.0-2.7.49, 2.8.0-2.8.48, 3.0.0-3.4.19, 4.0.0-4.0.14, 4.1.0-4.1.8, 4.2.0 - Unrestricted File Upload
CVSS 5.3
CVE-2018-6152 CRITICAL
Google Chrome <66.0.3359.117 - Code Injection
CVSS 9.6
CVE-2018-16097 MEDIUM
Lenovo XClarity Integrator < 3.5 and < 5.5 - Authenticated Arbitrary File Write via Certificate Upload
CVSS 6.5
CVE-2018-16093 MEDIUM
Lenovo XClarity Integrator < 5.5 - Authenticated Arbitrary File Write via Backup File Upload
CVSS 6.5
CVE-2018-15537 HIGH
Ocsinventory-ng Ocsinventory NG - Unrestricted File Upload
CVSS 8.8
CVE-2018-19692 CRITICAL
tp5cms < 2017-05-25 - Unauthenticated Arbitrary PHP File Upload via Picture Upload Endpoint
CVSS 9.8
CVE-2018-17936 CRITICAL
NUUO CMS < 3.3 - Unauthenticated Arbitrary File Upload and Remote Code Execution
CVSS 9.8
CVE-2018-19562 HIGH
PHPok 4.9.015 - Remote Code Execution via Compressed Packet Upgrade
CVSS 8.8
CVE-2018-19550 HIGH
Interspire Email Marketer <6.1.6 - File Upload
CVSS 8.8
CVE-2018-19537 HIGH
TP-Link Archer C5 Firmware < V2_160201_US - Authenticated Remote Command Execution via Configuration File Upload
CVSS 7.2
CVE-2018-19457 HIGH
Logicspice FAQ Script <2.9.7 - Command Injection
CVSS 7.2
CVE-2018-19424 HIGH
ClipperCMS 1.3.3 - Command Injection
CVSS 7.2
CVE-2018-19423 HIGH
Codiad 2.8.4 - Authenticated Remote Code Execution via File Upload
CVSS 7.2
CVE-2018-19422 HIGH
Subrion CMS < 4.2.2 - Remote Code Execution via .pht or .phar File Upload
CVSS 7.2
CVE-2018-19421 LOW
GetSimpleCMS 3.3.15 - Unrestricted Upload of File with Dangerous Type via .eml File
CVSS 3.8
CVE-2018-19420 LOW
GetSimpleCMS 3.3.15 - Unauthenticated Unrestricted Upload of File with Dangerous Type via Bypassed Extension Validation
CVSS 3.8
CVE-2018-18565 MEDIUM
Roche Accu-chek Inform II Firmware - Unrestricted File Upload
CVSS 6.8
CVE-2018-18563 CRITICAL
Roche Accu-chek Inform II Firmware - Unrestricted File Upload
CVSS 9.6
CVE-2018-9209 CRITICAL
FineUploader php-traditional-server <= 1.2.2 - Unauthenticated Arbitrary File Upload
CVSS 9.8
CVE-2018-9207 CRITICAL
jQuery Upload File <= 4.0.2 - Arbitrary File Upload
CVSS 9.8
CVE-2018-19355 CRITICAL
PrestaShop 1.5.0.0-1.7.0.0 - Unauthenticated Arbitrary File Upload via Customer Files Upload Module
CVSS 9.8
CVE-2018-18793 CRITICAL
School Event Management System 1.0 - Arbitrary File Upload via Event Controller
CVSS 9.8
CVE-2018-0686 HIGH
Denbun POP < 3.3p_r4.0 and Denbun IMAP < 3.3i_r4.0 - Authenticated Unrestricted Upload of Executable Files
CVSS 8.8
Details
Vulnerabilities 4,133
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits