VYPR

CWE-434

Unrestricted Upload of File with Dangerous Type

BaseDraftLikelihood: Medium

Description

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1

CVEs mapped to this weakness (1,669)

page 23 of 84
  • CVE-2016-7095CriNov 3, 2016
    risk 0.64cvss 9.8epss 0.02

    Exponent CMS before 2.3.9 is vulnerable to an attacker uploading a malicious script file using redirection to place the script in an unprotected folder, one allowing script execution.

  • CVE-2015-1000001CriOct 6, 2016
    risk 0.64cvss 9.8epss 0.03

    Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin

  • CVE-2015-1000000CriOct 6, 2016
    risk 0.64cvss 9.8epss 0.03

    Remote file upload vulnerability in mailcwp v1.99 wordpress plugin

  • CVE-2016-5050CriAug 26, 2016
    risk 0.64cvss 9.8epss 0.03

    Unrestricted file upload vulnerability in chat/sendfile.aspx in ReadyDesk 9.1 allows remote attackers to execute arbitrary code by uploading and requesting a .aspx file.

  • CVE-2025-34097HigJul 10, 2025
    risk 0.63cvss epss 0.01

    An unrestricted file upload vulnerability exists in ProcessMaker versions prior to 3.5.4 due to improper handling of uploaded plugin archives. An attacker with administrative privileges can upload a malicious .tar plugin file containing arbitrary PHP code. Upon installation, the…

  • CVE-2025-23942CriJan 22, 2025
    risk 0.63cvss 9.1epss 0.03

    Unrestricted Upload of File with Dangerous Type vulnerability in ngocuct0912 WP Load Gallery wp-load-gallery allows Upload a Web Shell to a Web Server.This issue affects WP Load Gallery: from n/a through <= 2.1.6.

  • CVE-2024-56249CriJan 2, 2025
    risk 0.63cvss 9.1epss 0.01

    Unrestricted Upload of File with Dangerous Type vulnerability in Ludwig You WPMasterToolKit wpmastertoolkit allows Upload a Web Shell to a Web Server.This issue affects WPMasterToolKit: from n/a through <= 1.13.1.

  • CVE-2024-6220CriJul 17, 2024
    risk 0.63cvss 9.8epss 0.36

    The 简数采集器 (Keydatas) plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the keydatas_downloadImages function in all versions up to, and including, 2.5.2. This makes it possible for unauthenticated attackers to upload…

  • CVE-2024-22263HigJun 19, 2024
    risk 0.63cvss 8.8epss 0.18

    Spring Cloud Data Flow is a microservices-based Streaming and Batch data processing in Cloud Foundry and Kubernetes. The Skipper server has the ability to receive upload package requests. However, due to improper sanitization for upload path, a malicious user who has access to…

  • CVE-2024-31114CriMar 31, 2024
    risk 0.63cvss 9.1epss 0.01

    Unrestricted Upload of File with Dangerous Type vulnerability in biplob018 Shortcode Addons.This issue affects Shortcode Addons: from n/a through 3.2.5.

  • CVE-2018-12980HigJul 12, 2018
    risk 0.63cvss 8.8epss 0.30

    An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before FW 02. The vulnerability allows an authenticated user to upload arbitrary files to the file system with the permissions of the web server.

  • CVE-2017-16524HigNov 6, 2017
    risk 0.63cvss 8.8epss 0.30

    Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'network_ssl_upload.php' allows remote authenticated attackers to upload and execute arbitrary PHP code via a filename with a .php extension, which is then accessed via a…

  • CVE-2024-33006CriMay 14, 2024
    risk 0.62cvss 9.6epss 0.01

    An unauthenticated attacker can upload a malicious file to the server which when accessed by a victim can allow an attacker to completely compromise system. 

  • CVE-2026-9102CriMay 20, 2026
    risk 0.61cvss epss 0.01

    A path traversal vulnerability exists in the Altium Enterprise Server ComparisonService due to missing filename sanitization in the Gerber file upload APIs. A regular authenticated workspace user can supply a crafted filename in the multipart Content-Disposition header to escape…

  • CVE-2019-25714CriApr 21, 2026
    risk 0.61cvss epss 0.01

    Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads.…

  • CVE-2012-10064CriJan 16, 2026
    risk 0.61cvss epss 0.01

    Omni Secure Files plugin versions prior to 0.1.14 contain an arbitrary file upload vulnerability in the bundled plupload example endpoint. The /wp-content/plugins/omni-secure-files/plupload/examples/upload.php handler allows unauthenticated uploads without enforcing safe file…

  • CVE-2023-7330CriNov 24, 2025
    risk 0.61cvss epss 0.01

    Ruijie NBR series routers contain an unauthenticated arbitrary file upload vulnerability via /ddi/server/fileupload.php. The endpoint accepts attacker-supplied values in the name and uploadDir parameters and saves the provided multipart file content without adequate validation…

  • CVE-2014-125119HigJul 25, 2025
    risk 0.61cvss epss 0.01

    A filename spoofing vulnerability exists in WinRAR when opening specially crafted ZIP archives. The issue arises due to inconsistencies between the Central Directory and Local File Header entries in ZIP files. When viewed in WinRAR, the file name from the Central Directory is…

  • CVE-2025-1980CriApr 16, 2025
    risk 0.61cvss epss 0.01

    The Ready_ application's Profile section allows users to upload files of any type and extension without restriction. If the server is misconfigured, as it was by default when installed at the turn of 2021 and 2022, it can result in Remote Code Execution. Refer to the Required…

  • CVE-2025-28915CriMar 11, 2025
    risk 0.61cvss 9.1epss 0.01

    Unrestricted Upload of File with Dangerous Type vulnerability in Theme Egg ThemeEgg ToolKit themeegg-toolkit allows Upload a Web Shell to a Web Server.This issue affects ThemeEgg ToolKit: from n/a through <= 1.2.9.