CWE-434

4,016 vulnerabilities with CWE-434

CVE-2024-5441 HIGH

Webnus Modern Events Calendar < 7.12.0 - Unrestricted File Upload

CVSS 8.8

CVE-2024-34692 LOW

SAP Enable Now - Unrestricted File Upload

CVSS 3.3

CVE-2024-27903 CRITICAL

OpenVPN <2.6.9 - Path Traversal

CVSS 9.8

CVE-2024-6319 HIGH

IMGspider plugin <2.3.10 - Code Injection

CVSS 8.8

CVE-2024-6318 HIGH

IMGspider plugin <2.3.10 - File Upload

CVSS 8.8

CVE-2024-6439 MEDIUM

Home Owners Collection Management System - Unrestricted File Upload

CVSS 6.3

CVE-2024-37762 CRITICAL

Machform < 21 - Unrestricted File Upload

CVSS 9.9

CVE-2024-36987 MEDIUM

Splunk Cloud < 9.1.2312.200 - Unrestricted File Upload

CVSS 4.3

CVE-2024-3123 HIGH

CHANGING Mobile - RCE

CVSS 7.2

CVE-2024-6127 CRITICAL

PowerShellEmpire Arbitrary File Upload (Skywalker)

CVSS 9.8

CVE-2024-6373 HIGH

itsourcecode Online Food Ordering System <1.0 - Unrestricted Upload

CVSS 7.3

CVE-2024-6054 HIGH

Auto-featured-image < 1.2 - Unrestricted File Upload

CVSS 8.8

CVE-2024-35527 CRITICAL

FarCry Core <7.2.14 - RCE

CVSS 9.8

CVE-2024-5008 HIGH

Progress Whatsup Gold < 23.1.3 - Unrestricted File Upload

CVSS 8.8

CVE-2024-4197 CRITICAL

Avaya IP Office < 11.1.3.1 - Unrestricted File Upload

CVSS 9.9

CVE-2024-37228 CRITICAL

Instawp Connect < 0.1.0.39 - Code Injection

CVSS 10.0

CVE-2024-24551 HIGH

Bludit - Authenticated RCE

CVSS 8.8

CVE-2024-24550 HIGH

Bludit - RCE

CVSS 8.1

CVE-2024-6280 MEDIUM

SourceCodester Simple Online Bidding System 1.0 - Unrestricted Upload

CVSS 6.3

CVE-2024-35767 CRITICAL

Squeeze < 1.4.1 - Unrestricted File Upload

CVSS 9.1

CVE-2024-28147 HIGH

Collection Preview Image - XSS/DoS

CVSS 7.4

CVE-2024-34990 CRITICAL

FME Modules for PrestaShop <2.4.0 - Code Injection

CVSS 10.0

CVE-2024-33836 CRITICAL

JA Marketplace <9.0.1 - Code Injection

CVSS 9.8

CVE-2024-22263 HIGH

Spring Cloud Data Flow - Path Traversal

CVSS 8.8

CVE-2024-6132 HIGH

Pexels: Free Stock Photos <1.2.2 - File Upload

CVSS 8.8