CWE-434
Medium likelihoodUnrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
4,017 vulnerabilities with CWE-434
CVE-2023-34394
HIGH
Keysight Geolocation Server < 2.4.2 - Unrestricted File Upload
CVSS 7.8
CVE-2023-3722
HIGH
Avaya Aura Device Services < 8.1.4.0 - Unrestricted File Upload
CVSS 8.6
CVE-2023-35189
CRITICAL
Iagona Scrutisweb < 2.1.37 - Unrestricted File Upload
CVSS 10.0
CVE-2023-38404
HIGH
Veritas InfoScale Ops Mgr <8.0.0.410 - Command Injection
CVSS 7.2
CVE-2023-3692
HIGH
Admidio < 4.2.10 - Unrestricted File Upload
CVSS 7.2
CVE-2023-30791
HIGH
Plane - Unrestricted File Upload
CVSS 7.1
CVE-2023-37839
CRITICAL
Dedecms - Unrestricted File Upload
CVSS 9.8
CVE-2023-3342
CRITICAL
WordPress User Registration <3.0.2 - RCE
CVSS 9.9
CVE-2023-34136
CRITICAL
SonicWall GMS & Analytics <9.3.2-SP1 - Unauthenticated File Upload
CVSS 9.8
CVE-2023-34126
HIGH
Sonicwall Analytics < 2.5.0.4-r7 - Unrestricted File Upload
CVSS 8.8
CVE-2023-37629
CRITICAL
Simple Online Piggery Management System - Unrestricted File Upload
CVSS 9.8
CVE-2023-3626
MEDIUM
Istrong Mountain Flood Disaster Prevention Monitoring And Early Warning System < 20230706 - Unrestricted File Upload
CVSS 6.3
CVE-2023-3625
MEDIUM
Suncreate Mountain Flood <20230706 - Unrestricted Upload
CVSS 6.3
CVE-2023-3623
MEDIUM
Suncreate Mountain Flood <20230704 - Unrestricted Upload
CVSS 6.3
CVE-2023-37656
CRITICAL
Websiteguide - Unrestricted File Upload
CVSS 9.8
CVE-2023-37152
CRITICAL
Online Art Gallery - Unrestricted File Upload
CVSS 9.8
CVE-2023-34193
HIGH
Zimbra ZCS 8.8.15 - RCE
CVSS 8.8
CVE-2023-36969
HIGH
CMS Made Simple <2.2.17 - RCE
CVSS 8.8
CVE-2023-36809
HIGH
Kiwi TCMS <12.5 - Info Disclosure
CVSS 8.1
CVE-2023-37208
HIGH
Mozilla Firefox < 115.0 - Unrestricted File Upload
CVSS 7.8
CVE-2023-3504
MEDIUM
SmartWeb Infotech Job Board 1.0 - Unrestricted Upload
CVSS 6.3
CVE-2023-3503
MEDIUM
SourceCodester Shopping Website 1.0 - Unrestricted Upload
CVSS 6.3
CVE-2023-3491
HIGH
Fossbilling < 0.5.3 - Unrestricted File Upload
CVSS 8.8
CVE-2023-32621
HIGH
Wavlink Wl-wn531ax2 Firmware < 2023526 - Unrestricted File Upload
CVSS 7.2
CVE-2023-34738
CRITICAL
Chemex < 3.7.1 - Unrestricted File Upload
CVSS 9.8
Details
Vulnerabilities
4,017
Exploit Likelihood
Medium