VYPR

CWE-434

Unrestricted Upload of File with Dangerous Type

BaseDraftLikelihood: Medium

Description

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1

CVEs mapped to this weakness (1,669)

page 37 of 84
  • CVE-2024-11984HigDec 19, 2024
    risk 0.57cvss 8.8epss 0.01

    A unrestricted upload of file with dangerous type vulnerability in epaper draft function in Corporate Training Management System before 10.13 allows remote authenticated users to bypass file upload restrictions and perform arbitrary system commands with SYSTEM privilege via a…

  • CVE-2024-46625HigDec 3, 2024
    risk 0.57cvss 8.8epss 0.01

    An authenticated arbitrary file upload vulnerability in the /documentCache/upload endpoint of InfoDom Performa 365 v4.0.1 allows attackers to execute arbitrary code via uploading a crafted SVG file.

  • CVE-2024-51364HigNov 21, 2024
    risk 0.57cvss 8.8epss 0.01

    An arbitrary file upload vulnerability in ModbusMechanic v3.0 allows attackers to execute arbitrary code via uploading a crafted .xml file.

  • CVE-2024-49398HigOct 17, 2024
    risk 0.57cvss epss 0.01

    The affected product is vulnerable to unrestricted file uploads, which may allow an attacker to remotely execute code.

  • CVE-2024-46441HigSep 27, 2024
    risk 0.57cvss 8.8epss 0.01

    An arbitrary file upload vulnerability in YPay 1.2.0 allows attackers to execute arbitrary code via a ZIP archive to themePutFile in app/common/util/Upload.php (called from app/admin/controller/ypay/Home.php). The file extension of an uncompressed file is not checked.

  • CVE-2024-7257CriAug 3, 2024
    risk 0.57cvss 9.8epss 0.01

    The YayExtra – WooCommerce Extra Product Options plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the handle_upload_file function in all versions up to, and including, 1.3.7. This makes it possible for unauthenticated…

  • CVE-2024-3229CriJun 19, 2024
    risk 0.57cvss 9.8epss 0.01

    The Salon booking system plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the SLN_Action_Ajax_ImportAssistants function along with missing authorization checks in all versions up to, and including, 10.2. This makes it possible…

  • CVE-2024-31680HigApr 17, 2024
    risk 0.57cvss 8.8epss 0.01

    File Upload vulnerability in Shibang Communications Co., Ltd. IP network intercom broadcasting system v.1.0 allows a local attacker to execute arbitrary code via the my_parser.php component.

  • CVE-2024-2125HigApr 9, 2024
    risk 0.57cvss 8.8epss 0.00

    The EnvíaloSimple: Email Marketing y Newsletters plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3. This is due to missing or incorrect nonce validation on the gallery_add function. This makes it possible for…

  • CVE-2024-27964HigMar 21, 2024
    risk 0.57cvss 8.8epss 0.01

    Unrestricted Upload of File with Dangerous Type vulnerability in Gesundheit Bewegt GmbH Zippy.This issue affects Zippy: from n/a through 1.6.9.

  • CVE-2024-1468HigFeb 29, 2024
    risk 0.57cvss 8.8epss 0.01

    The Avada | Website Builder For WordPress & WooCommerce theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_import_options() function in all versions up to, and including, 7.11.4. This makes it possible for authenticated…

  • CVE-2023-6979HigJan 11, 2024
    risk 0.57cvss 8.8epss 0.01

    The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ivole_import_upload_csv AJAX action in all versions up to, and including, 5.38.9. This makes it possible for authenticated attackers, with…

  • CVE-2023-6316CriJan 11, 2024
    risk 0.57cvss 9.8epss 0.01

    The MW WP Form plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the '_single_file_upload' function in versions up to, and including, 5.0.1. This makes it possible for unauthenticated attackers to upload arbitrary files on…

  • CVE-2023-23970HigDec 20, 2023
    risk 0.57cvss 8.8epss 0.01

    Unrestricted Upload of File with Dangerous Type vulnerability in WooRockets Corsa.This issue affects Corsa: from n/a through 1.5.

  • CVE-2023-48966HigDec 4, 2023
    risk 0.57cvss 8.8epss 0.01

    An arbitrary file upload vulnerability in the component /admin/api.upload/file of ThinkAdmin v6.1.53 allows attackers to execute arbitrary code via a crafted Zip file.

  • CVE-2023-49052HigNov 30, 2023
    risk 0.57cvss 8.8epss 0.02

    File Upload vulnerability in Microweber v.2.0.4 allows a remote attacker to execute arbitrary code via a crafted script to the file upload function in the created forms component.

  • CVE-2023-5227CriSep 30, 2023
    risk 0.57cvss 9.8epss 0.01

    Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to 3.1.8.

  • CVE-2023-38887HigSep 20, 2023
    risk 0.57cvss 8.8epss 0.01

    File Upload vulnerability in Dolibarr ERP CRM v.17.0.1 and before allows a remote attacker to execute arbitrary code and obtain sensitive information via the extension filtering and renaming functions.

  • CVE-2023-4243HigAug 9, 2023
    risk 0.57cvss 8.8epss 0.01

    The FULL - Customer plugin for WordPress is vulnerable to Arbitrary File Upload via the /install-plugin REST route in versions up to, and including, 2.2.3 due to improper authorization. This allows authenticated attackers with subscriber-level permissions and above to execute…

  • CVE-2023-3342CriJul 13, 2023
    risk 0.57cvss 9.9epss 0.01

    The User Registration plugin for WordPress is vulnerable to arbitrary file uploads due to a hardcoded encryption key and missing file type validation on the 'ur_upload_profile_pic' function in versions up to, and including, 3.0.2. This makes it possible for authenticated…