CWE-434
Medium likelihoodUnrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
4,013 vulnerabilities with CWE-434
CVE-2024-58295
HIGH
ElkArte Forum 1.1.9 - RCE
CVE-2024-58283
HIGH
Wbce Cms - Unrestricted File Upload
CVSS 8.8
CVE-2024-58282
HIGH
S9Y Serendipity - Unrestricted File Upload
CVSS 7.2
CVE-2024-58281
HIGH
Dotclear - Unrestricted File Upload
CVSS 8.8
CVE-2024-58279
HIGH
Apprain - Unrestricted File Upload
CVSS 8.8
CVE-2024-13342
HIGH
Booster for WooCommerce <7.2.4 - RCE
CVSS 8.1
CVE-2024-13986
HIGH
Nagios XI < 2024 - Path Traversal
CVSS 8.8
CVE-2024-9648
MEDIUM
WP ULike Pro <1.9.3 - File Upload
CVSS 6.1
CVE-2024-13981
CRITICAL
LiveBOS - Path Traversal
CVE-2024-39752
MEDIUM
IBM Analytics Content Hub < 2.4 - Unrestricted File Upload
CVSS 6.8
CVE-2024-7074
MEDIUM
WSO2 products - RCE
CVSS 6.8
CVE-2024-9544
MEDIUM
MapSVG plugin - XSS
CVSS 6.4
CVE-2024-11617
CRITICAL
Envolve Plugin <1.0 - File Upload
CVSS 9.8
CVE-2024-51991
MEDIUM
October <3.7.5 - Auth Bypass
CVSS 4.9
CVE-2024-13418
HIGH
WordPress - Arbitrary File Uploads
CVSS 8.8
CVE-2024-11390
MEDIUM
Kibana - XSS
CVSS 5.4
CVE-2024-40071
CRITICAL
Sourcecodester Online ID Generator System 1.0 - RCE
CVSS 9.8
CVE-2024-13708
HIGH
Booster For Woocommerce < 7.2.5 - Unrestricted File Upload
CVSS 7.2
CVE-2024-13744
HIGH
Booster For Woocommerce < 7.2.5 - Unrestricted File Upload
CVSS 8.1
CVE-2024-56975
CRITICAL
InvoicePlane <1.6.11 - RCE
CVSS 9.8
CVE-2024-9920
HIGH
Lollms Web UI - Unrestricted File Upload
CVSS 8.8
CVE-2024-8958
CRITICAL
Composio - Unrestricted File Upload
CVSS 9.8
CVE-2024-8019
CRITICAL
Lightning-ai/pytorch-lightning <2.3.2 - RCE
CVSS 9.1
CVE-2024-10901
CRITICAL
Dbgpt Db-gpt - Unrestricted File Upload
CVSS 9.8
CVE-2024-45644
MEDIUM
IBM Security Qradar Edr - Unrestricted File Upload
CVSS 4.7
Details
Vulnerabilities
4,013
Exploit Likelihood
Medium