CWE-434
Medium likelihoodUnrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
4,018 vulnerabilities with CWE-434
CVE-2022-44384
HIGH
rconfig <3.9.6 - RCE
CVSS 8.8
CVE-2022-43234
CRITICAL
Hoosk v1.8 - RCE
CVSS 9.8
CVE-2022-43265
CRITICAL
Canteen Management System <1.0 - RCE
CVSS 9.8
CVE-2022-43146
HIGH
Canteen Management System <1.0 - RCE
CVSS 7.2
CVE-2022-3944
MEDIUM
Erp - Unrestricted File Upload
CVSS 6.3
CVE-2022-40981
MEDIUM
ETIC Telecom RAS <4.5.0 - Code Injection
CVSS 5.9
CVE-2022-43074
CRITICAL
Ayacms - Unrestricted File Upload
CVSS 9.8
CVE-2022-39036
CRITICAL
Agentflow BPM - RCE
CVSS 9.8
CVE-2022-43277
HIGH
Canteen Management System v1.0 - RCE
CVSS 7.2
CVE-2022-40797
CRITICAL
Roxyfileman Roxy Fileman - Unrestricted File Upload
CVSS 9.8
CVE-2022-43050
HIGH
Online Tours And Travels Management System - Unrestricted File Upload
CVSS 7.2
CVE-2022-44054
CRITICAL
d8s-xml <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-44053
CRITICAL
d8s-networking <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-44052
CRITICAL
d8s-dates <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-44051
CRITICAL
d8s-stats <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-44050
CRITICAL
d8s-networking <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-44049
CRITICAL
d8s-python - Code Injection
CVSS 9.8
CVE-2022-44048
CRITICAL
d8s-urls <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-43306
HIGH
d8s-timer <0.1.0 - Code Injection
CVSS 8.8
CVE-2022-43305
CRITICAL
d8s-python - Code Injection
CVSS 9.8
CVE-2022-43304
CRITICAL
d8s-timer <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-43303
CRITICAL
d8s-strings <0.1.0 - Code Injection
CVSS 9.8
CVE-2022-3537
HIGH
WooCommerce <1.6.2 - CSRF
CVSS 8.8
CVE-2022-43061
HIGH
Online Tours & Travels Management System - Unrestricted File Upload
CVSS 7.2
CVE-2022-3575
CRITICAL
Frauscher Sensortechnik GmbH FDS102 - Code Injection
CVSS 9.8
Details
Vulnerabilities
4,018
Exploit Likelihood
Medium