CWE-434

4,013 vulnerabilities with CWE-434

CVE-2025-1555 HIGH

Hzmanyun Education And Training System - Improper Access Control

CVSS 7.3

CVE-2025-22654 CRITICAL

kodeshpa Simplified <1.0.6 - UAFDT

CVSS 10.0

CVE-2025-1388 HIGH

Learningdigital Orca Hcm < 11.0 - Unrestricted File Upload

CVSS 8.8

CVE-2025-1355 HIGH

Needyamin Library Card System - Improper Access Control

CVSS 7.3

CVE-2025-1070 HIGH

Unknown - Info Disclosure

CVSS 8.1

CVE-2025-26350 MEDIUM

Q-free Maxtime < 2.11.0 - Unrestricted File Upload

CVSS 4.9

CVE-2025-26411 HIGH

Wattsense Bridge - RCE

CVSS 8.8

CVE-2025-1166 MEDIUM

Remyandrade Food Menu Manager - Improper Access Control

CVSS 6.3

CVE-2025-1165 HIGH

Lumsoft ERP 8 - Unrestricted Upload

CVSS 7.3

CVE-2025-1025 HIGH

Cockpit <2.4.1 - Code Injection

CVSS 7.5

CVE-2025-1028 HIGH

WordPress Contact Manager <8.6.4 - File Upload

CVSS 8.1

CVE-2025-24505 HIGH

PAM - Command Injection

CVE-2025-23213 HIGH

Tandoor Recipes < 1.5.28 - Unrestricted File Upload

CVSS 8.7

CVE-2025-0722 MEDIUM

needyamin image_gallery 1.0 - Unrestricted Upload

CVSS 4.7

CVE-2025-0357 CRITICAL

WPBookit <1.6.9 - File Upload

CVSS 9.8

CVE-2025-24650 CRITICAL

Themefic Tourfic < 2.15.4 - Unrestricted File Upload

CVSS 9.1

CVE-2025-0702 MEDIUM

Joeybling Bootplus < 2020-08-24 - Improper Access Control

CVSS 6.3

CVE-2025-23953 CRITICAL

Innovative Solutions <2.4.2 - Code Injection

CVSS 10.0

CVE-2025-23942 CRITICAL

NgocCode WP Load Gallery <2.1.6 - RCE

CVSS 9.1

CVE-2025-23921 CRITICAL

Multi Uploader for Gravity Forms <1.1.3 - RCE

CVSS 9.0

CVE-2025-23918 CRITICAL

Smallerik File Browser <1.1 - RCE

CVSS 9.9

CVE-2025-22723 CRITICAL

UkrSolution Barcode Scanner <1.6.7 - Code Injection

CVSS 9.1

CVE-2025-0582 MEDIUM

itsourcecode Farm Management System <1.0 - Unrestricted Upload

CVSS 4.7

CVE-2025-0472 HIGH

PMB <4.2.13 - Info Disclosure

CVSS 7.5

CVE-2025-0471 CRITICAL

PMB <4.0.10 - RCE

CVSS 9.9