CWE-434

Medium likelihood

Unrestricted Upload of File with Dangerous Type

Parent: CWE-669 - Incorrect Resource Transfer Between Spheres

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

4,016 vulnerabilities with CWE-434
CVE-2023-7212 MEDIUM
Dedecms < 5.7.112 - Unrestricted File Upload
CVSS 4.7
CVE-2023-6551 MEDIUM
class.upload.php - XSS
CVSS 5.4
CVE-2023-50760 HIGH
Kashipara Online Notice Board System - Unrestricted File Upload
CVSS 8.8
CVE-2023-50922 HIGH
Gl-inet Gl-mt1300 Firmware - Unrestricted File Upload
CVSS 7.2
CVE-2023-45724 HIGH
Hcltech Dryice Myxalytics - Unrestricted File Upload
CVSS 8.2
CVE-2023-7181 MEDIUM
Dedebiz < 6.2.12 - Unrestricted File Upload
CVSS 4.7
CVE-2023-51475 CRITICAL
IOSS WP MLM SOFTWARE PLUGIN <4.0 - Unrestricted Upload
CVSS 10.0
CVE-2023-51473 CRITICAL
Pixelemu TerraClassifieds - Unrestricted Upload
CVSS 10.0
CVE-2023-51468 CRITICAL
Rencontre - Dating Site <3.10.1 - Unrestricted Upload
CVSS 10.0
CVE-2023-51421 CRITICAL
Soft8soft Verge3d < 4.5.2 - Unrestricted File Upload
CVSS 9.9
CVE-2023-51419 CRITICAL
Bertha.Ai <1.11.10.7 - Unrestricted Upload of File with Dangerous Type
CVSS 10.0
CVE-2023-51417 CRITICAL
Jorisvm Jvm Gutenberg Rich Text Icons < 1.2.3 - Unrestricted File Upload
CVSS 9.9
CVE-2023-51412 CRITICAL
Piotnet Forms <1.0.25 - File Injection
CVSS 9.0
CVE-2023-51411 CRITICAL
Dynamiapps Frontend Admin < 3.18.3 - Unrestricted File Upload
CVSS 10.0
CVE-2023-51410 CRITICAL
WPVibes WP Mail Log <1.1.2 - Unrestricted Upload
CVSS 9.9
CVE-2023-7159 MEDIUM
Masterlab < 3.3.10 - Unrestricted File Upload
CVSS 4.7
CVE-2023-7150 MEDIUM
Campcodes Chic Beauty Salon - Unrestricted File Upload
CVSS 4.7
CVE-2023-7147 MEDIUM
Masterlab < 3.3.10 - Unrestricted File Upload
CVSS 6.3
CVE-2023-50104 CRITICAL
Zzcms - Unrestricted File Upload
CVSS 9.8
CVE-2023-50038 HIGH
Textpattern - Unrestricted File Upload
CVSS 8.8
CVE-2023-50692 HIGH
Jizhicms - Unrestricted File Upload
CVSS 8.8
CVE-2023-5931 HIGH
Rtcamp Rtmedia < 4.6.16 - Unrestricted File Upload
CVSS 8.8
CVE-2023-5673 HIGH
Wpvibes WP Mail Log < 1.1.3 - Unrestricted File Upload
CVSS 8.8
CVE-2023-52086 HIGH
resumable.php <3c6dbf5 - File Upload
CVSS 8.1
CVE-2023-7091 MEDIUM
Iteachyou Dreamer Cms - Unrestricted File Upload
CVSS 6.3
Details
Vulnerabilities 4,016
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits