CWE-434
Medium likelihoodUnrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
4,016 vulnerabilities with CWE-434
CVE-2024-0300
MEDIUM
Byzoro Smart S150 Firmware < 2024-01-01 - Unrestricted File Upload
CVSS 6.3
CVE-2024-0194
MEDIUM
Codeastro Internet Banking System - Unrestricted File Upload
CVSS 6.3
CVE-2024-0192
MEDIUM
NIA Rrj Nueva Ecija Engineer Online Portal - Unrestricted File Upload
CVSS 6.3
CVE-2024-0185
MEDIUM
NIA Rrj Nueva Ecija Engineer Online Portal - Unrestricted File Upload
CVSS 4.7
CVE-2023-50897
CRITICAL
Meow Apps Media File Renamer <5.7.7 - RCE
CVSS 9.1
CVE-2023-53980
CRITICAL
ProjectSend r1605 - RCE
CVSS 9.8
CVE-2023-53971
HIGH
WebTareas 2.4 - File Upload
CVSS 8.8
CVE-2023-53956
HIGH
Flatnux 2021-03.25 - RCE
CVSS 8.8
CVE-2023-53952
HIGH
Dotclear 2.25.3 - RCE
CVSS 8.8
CVE-2023-53950
CRITICAL
InnovaStudio WYSIWYG Editor 5.4 - Unrestricted File Upload
CVSS 9.8
CVE-2023-53942
HIGH
Thingie 2.5.7 - Command Injection
CVSS 8.8
CVE-2023-53933
HIGH
Serendipity 2.4.0 - RCE
CVSS 8.8
CVE-2023-53924
HIGH
UliCMS 2023.1-sniffing-vicuna - RCE
CVSS 8.8
CVE-2023-53922
CRITICAL
TinyWebGallery v2.5 - RCE
CVSS 9.8
CVE-2023-53921
CRITICAL
SitemagicCMS 4.4.3 - RCE
CVSS 9.8
CVE-2023-53892
HIGH
Blackcat CMS 1.4 - RCE
CVSS 7.2
CVE-2023-53889
HIGH
Perch CMS 3.2 - RCE
CVSS 7.2
CVE-2023-53885
HIGH
Webutler v3.2 - RCE
CVSS 7.2
CVE-2023-53876
MEDIUM
Academy LMS 6.1 - XSS
CVSS 5.4
CVE-2023-53871
CRITICAL
Soosyze 2.0.0 - Code Injection
CVSS 9.8
CVE-2023-53869
HIGH
WEBIGniter 28.7.23 - RCE
CVE-2023-53868
HIGH
Coppermine Gallery 1.6.25 - Authenticated RCE
CVSS 8.8
CVE-2023-7330
CRITICAL
Ruijie NBR - RCE
CVE-2023-28814
CRITICAL
Hikvision iSecure Center - File Upload
CVSS 9.8
CVE-2023-7305
CRITICAL
SmartBI V8-V10 - Unrestricted File Upload
Details
Vulnerabilities
4,016
Exploit Likelihood
Medium