CWE-434

4,014 vulnerabilities with CWE-434

CVE-2024-46625 HIGH

InfoDom Performa 365 v4.0.1 - RCE

CVSS 8.8

CVE-2024-25020 MEDIUM

IBM Cognos Controller <11.0.1 - Code Injection

CVSS 5.5

CVE-2024-53863 CRITICAL

Synapse <1.120.1 - Code Injection

CVSS 9.1

CVE-2024-40691 HIGH

IBM Cognos Controller 11.0.0-11.0.1 - Code Injection

CVSS 8.0

CVE-2024-25019 MEDIUM

IBM Cognos Controller 11.0.0-11.0.1 - Code Injection

CVSS 5.5

CVE-2024-11391 HIGH

Advanced File Manager <5.2.10 - RCE

CVSS 7.5

CVE-2024-53564 LOW

Sangoma Freepbx - Unrestricted File Upload

CVSS 2.2

CVE-2024-52476 CRITICAL

stefanbohacek Fediverse Embeds <1.5.3 - RCE

CVSS 10.0

CVE-2024-11979 CRITICAL

DreamMaker - Path Traversal

CVSS 9.8

CVE-2024-11971 LOW

Guizhou Xiaoma Technology jpress 5.1.2 - XSS

CVSS 3.5

CVE-2024-52490 CRITICAL

Pathomation <2.5.1 - Code Injection

CVSS 10.0

CVE-2024-11082 CRITICAL

Tumult Hype Animations <1.9.15 - RCE

CVSS 9.9

CVE-2024-8066 HIGH

Filester <1.8.6 - RCE

CVSS 7.5

CVE-2024-53619 MEDIUM

Spip - Unrestricted File Upload

CVSS 6.3

CVE-2024-9504 HIGH

Booking calendar <3.2.15 - XSS

CVSS 7.2

CVE-2024-11674 MEDIUM

CodeAstro Hospital Management System 1.0 - Unrestricted Upload

CVSS 6.3

CVE-2024-11661 MEDIUM

Codezips Free Exam Hall Seating Management System - Improper Access Control

CVSS 4.3

CVE-2024-9942 CRITICAL

WPGYM - Wordpress Gym Management System <67.1.0 - File Upload

CVSS 9.8

CVE-2024-9660 HIGH

Dasinfomedia School Management System - Unrestricted File Upload

CVSS 8.8

CVE-2024-9659 CRITICAL

Dasinfomedia School Management System - Unrestricted File Upload

CVSS 9.8

CVE-2024-51366 CRITICAL

OmegaT <6.0.1 - Code Injection

CVSS 9.8

CVE-2024-51364 HIGH

ModbusMechanic v3.0 - Code Injection

CVSS 8.8

CVE-2024-8525 CRITICAL

Automated Logic WebCTRL 7.0 - Command Injection

CVE-2024-52677 CRITICAL

Hkcms < 2.3.2.240702 - Unrestricted File Upload

CVSS 9.8

CVE-2024-52769 HIGH

Dedebiz - Unrestricted File Upload

CVSS 7.2