CWE-434

4,011 vulnerabilities with CWE-434

CVE-2025-60235 CRITICAL

Plugify Helpdesk Support Ticket System for WooCommerce <2.1.0 - Unr...

CVSS 10.0

CVE-2025-60207 CRITICAL

Addify Custom User Registration Fields for WooCommerce <2.1.2 - Cod...

CVSS 10.0

CVE-2025-60187 MEDIUM

Vito Peleg Atarim atarim-visual-collaboration <4.2 - Unrestricted U...

CVSS 4.8

CVE-2025-58996 CRITICAL

Helmut Wandl Advanced Settings <3.1.1 - Code Injection

CVSS 9.1

CVE-2025-53283 CRITICAL

borisolhor Drop Uploader <2.4.1 - RCE

CVSS 10.0

CVE-2025-10907 HIGH

Wso2 API Control Plane - Unrestricted File Upload

CVSS 8.4

CVE-2025-20376 MEDIUM

Cisco Unified CCX - RCE

CVSS 6.5

CVE-2025-20375 MEDIUM

Cisco Unified CCX - RCE

CVSS 6.5

CVE-2025-20354 CRITICAL

Cisco Unified CCX - RCE

CVSS 9.8

CVE-2025-63601 CRITICAL

Snipe-IT <8.3.3 - RCE

CVSS 9.9

CVE-2025-3125 MEDIUM

Wso2 API Control Plane - Unrestricted File Upload

CVSS 6.7

CVE-2025-12674 CRITICAL

KiotViet Sync <1.8.5 - RCE

CVSS 9.8

CVE-2025-12682 CRITICAL

WordPress <2.9.8 - XSS

CVSS 9.8

CVE-2025-11724 HIGH

EM Beer Manager <3.2.3 - RCE

CVSS 8.8

CVE-2025-48396 HIGH

Eaton BLSS <7.3.0.SCP004 - RCE

CVSS 8.3

CVE-2025-12593 MEDIUM

Simple Online Hotel Reservation System 2.0 - Unrestricted Upload

CVSS 4.7

CVE-2025-12171 HIGH

WordPress RESTful Content Syndication <1.5.0 - RCE

CVSS 8.8

CVE-2025-11755 HIGH

WP Delicious - Recipe Plugin <1.9.0 - RCE

CVSS 8.8

CVE-2025-11499 CRITICAL

Tablesome Table - WPForms <1.1.32 - File Upload

CVSS 9.8

CVE-2025-62618 HIGH

ELOG <3.1.5-20251014 - XSS

CVSS 8.0

CVE-2025-64095 CRITICAL

Dnnsoftware Dotnetnuke < 10.1.1 - Unrestricted File Upload

CVSS 10.0

CVE-2025-62802 MEDIUM

DNN <10.1.1 - Info Disclosure

CVSS 4.3

CVE-2025-12378 HIGH

Fabian Simple Food Ordering System - Improper Access Control

CVSS 7.3

CVE-2025-12347 MEDIUM

Max-3000 Maxsite Cms < 109 - Improper Access Control

CVSS 6.3

CVE-2025-12346 MEDIUM

Max-3000 Maxsite Cms < 109 - Improper Access Control

CVSS 6.3