CWE-434
Unrestricted Upload of File with Dangerous Type
Description
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
Hierarchy (View 1000)
Parents
Children
none
Related attack patterns (CAPEC)
CAPEC-1
CVEs mapped to this weakness (1,669)
page 38 of 84| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-21489 | — | Cri | 0.57 | 9.8 | 0.01 | Jun 20, 2023 | File Upload vulnerability in Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component. | |
| CVE-2020-21174 | Cri | 0.57 | 9.8 | 0.01 | Jun 20, 2023 | File Upload vulenrability in liufee CMS v.2.0.7.1 allows a remote attacker to execute arbitrary code via the image suffix function. | ||
| CVE-2023-33498 | Hig | 0.57 | 8.8 | 0.01 | Jun 7, 2023 | alist <=3.16.3 is vulnerable to Incorrect Access Control. Low privilege accounts can upload any file. | ||
| CVE-2022-4949 | Hig | 0.57 | 8.8 | 0.02 | Jun 7, 2023 | The AdSanity plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajax_upload' function in versions up to, and including, 1.8.1. This makes it possible for authenticated attackers with Contributor+ level privileges to upload… | ||
| CVE-2021-4382 | Hig | 0.57 | 8.8 | 0.02 | Jun 7, 2023 | The Recently plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the fetch_external_image() function in versions up to, and including, 3.0.4. This makes it possible for authenticated attackers to upload arbitrary files on the… | ||
| CVE-2021-4354 | Hig | 0.57 | 8.8 | 0.02 | Jun 7, 2023 | The PWA for WP & AMP for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the pwaforwp_splashscreen_uploader function in versions up to, and including, 1.7.32. This makes it possible for authenticated attackers to upload arbitrary files on… | ||
| CVE-2020-36701 | Hig | 0.57 | 8.8 | 0.02 | Jun 7, 2023 | The Page Builder: KingComposer plugin for WordPress is vulnerable to Arbitrary File Uploads in versions up to, and including, 2.9.3 via the 'process_bulk_action' function in the 'kingcomposer/includes/kc.extensions.php' file. This makes it possible for authenticated users with… | ||
| CVE-2020-22755 | — | Hig | 0.57 | 8.8 | 0.01 | May 8, 2023 | File upload vulnerability in MCMS 5.0 allows attackers to execute arbitrary code via a crafted thumbnail. A different vulnerability than CVE-2022-31943. | |
| CVE-2022-45802 | Cri | 0.57 | 9.8 | 0.01 | May 1, 2023 | Streampark allows any users to upload a jar as application, but there is no mandatory verification of the uploaded file type, causing users to upload some high-risk files, and may upload them to any directory, Users of the affected versions should upgrade to Apache StreamPark… | ||
| CVE-2023-0265 | — | Hig | 0.57 | 8.8 | 0.02 | Apr 4, 2023 | Uvdesk version 1.1.1 allows an authenticated remote attacker to execute commands on the server. This is possible because the application does not properly validate profile pictures uploaded by customers. | |
| CVE-2023-25655 | Cri | 0.57 | 9.8 | 0.01 | Mar 23, 2023 | baserCMS is a Content Management system. Prior to version 4.7.5, any file may be uploaded on the management system of baserCMS. Version 4.7.5 contains a patch. | ||
| CVE-2023-25654 | Cri | 0.57 | 9.8 | 0.02 | Mar 23, 2023 | baserCMS is a Content Management system. Prior to version 4.7.5, there is a Remote Code Execution (RCE) Vulnerability in the management system of baserCMS. Version 4.7.5 contains a patch. | ||
| CVE-2021-4330 | Hig | 0.57 | 8.8 | 0.02 | Mar 7, 2023 | The Envato Elements & Download and Template Kit – Import plugins for WordPress are vulnerable to arbitrary file uploads due to insufficient validation of file type upon extracting uploaded Zip files in the installFreeTemplateKit and uploadTemplateKitZipFile functions. This… | ||
| CVE-2022-47042 | — | Hig | 0.57 | 8.8 | 0.01 | Jan 26, 2023 | MCMS v5.2.10 and below was discovered to contain an arbitrary file write vulnerability via the component ms/template/writeFileContent.do. | |
| CVE-2021-26642 | Hig | 0.57 | 8.8 | 0.01 | Jan 20, 2023 | When uploading an image file to a bulletin board developed with XpressEngine, a vulnerability in which an arbitrary file can be uploaded due to insufficient verification of the file. A remote attacker can use this vulnerability to execute arbitrary code on the server where the… | ||
| CVE-2022-44289 | Hig | 0.57 | 8.8 | 0.03 | Dec 6, 2022 | Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell. | ||
| CVE-2022-41711 | Cri | 0.57 | 9.8 | 0.02 | Oct 25, 2022 | Badaso version 2.6.0 allows an unauthenticated remote attacker to execute arbitrary code remotely on the server. This is possible because the application does not properly validate the data uploaded by users. | ||
| CVE-2020-21516 | — | Cri | 0.57 | 9.8 | 0.01 | Sep 6, 2022 | There is an arbitrary file upload vulnerability in FeehiCMS 2.0.8 at the head image upload, that allows attackers to execute relevant PHP code. | |
| CVE-2022-34971 | — | Hig | 0.57 | 8.8 | 0.01 | Jul 27, 2022 | An arbitrary file upload vulnerability in the Advertising Management module of Feehi CMS v2.1.1 allows attackers to execute arbitrary code via a crafted PHP file. | |
| CVE-2022-34115 | Cri | 0.57 | 9.8 | 0.01 | Jul 22, 2022 | DataEase v1.11.1 was discovered to contain a arbitrary file write vulnerability via the parameter dataSourceId. |
- risk 0.57cvss 9.8epss 0.01
File Upload vulnerability in Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component.
- risk 0.57cvss 9.8epss 0.01
File Upload vulenrability in liufee CMS v.2.0.7.1 allows a remote attacker to execute arbitrary code via the image suffix function.
- risk 0.57cvss 8.8epss 0.01
alist <=3.16.3 is vulnerable to Incorrect Access Control. Low privilege accounts can upload any file.
- risk 0.57cvss 8.8epss 0.02
The AdSanity plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajax_upload' function in versions up to, and including, 1.8.1. This makes it possible for authenticated attackers with Contributor+ level privileges to upload…
- risk 0.57cvss 8.8epss 0.02
The Recently plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the fetch_external_image() function in versions up to, and including, 3.0.4. This makes it possible for authenticated attackers to upload arbitrary files on the…
- risk 0.57cvss 8.8epss 0.02
The PWA for WP & AMP for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the pwaforwp_splashscreen_uploader function in versions up to, and including, 1.7.32. This makes it possible for authenticated attackers to upload arbitrary files on…
- risk 0.57cvss 8.8epss 0.02
The Page Builder: KingComposer plugin for WordPress is vulnerable to Arbitrary File Uploads in versions up to, and including, 2.9.3 via the 'process_bulk_action' function in the 'kingcomposer/includes/kc.extensions.php' file. This makes it possible for authenticated users with…
- risk 0.57cvss 8.8epss 0.01
File upload vulnerability in MCMS 5.0 allows attackers to execute arbitrary code via a crafted thumbnail. A different vulnerability than CVE-2022-31943.
- risk 0.57cvss 9.8epss 0.01
Streampark allows any users to upload a jar as application, but there is no mandatory verification of the uploaded file type, causing users to upload some high-risk files, and may upload them to any directory, Users of the affected versions should upgrade to Apache StreamPark…
- risk 0.57cvss 8.8epss 0.02
Uvdesk version 1.1.1 allows an authenticated remote attacker to execute commands on the server. This is possible because the application does not properly validate profile pictures uploaded by customers.
- risk 0.57cvss 9.8epss 0.01
baserCMS is a Content Management system. Prior to version 4.7.5, any file may be uploaded on the management system of baserCMS. Version 4.7.5 contains a patch.
- risk 0.57cvss 9.8epss 0.02
baserCMS is a Content Management system. Prior to version 4.7.5, there is a Remote Code Execution (RCE) Vulnerability in the management system of baserCMS. Version 4.7.5 contains a patch.
- risk 0.57cvss 8.8epss 0.02
The Envato Elements & Download and Template Kit – Import plugins for WordPress are vulnerable to arbitrary file uploads due to insufficient validation of file type upon extracting uploaded Zip files in the installFreeTemplateKit and uploadTemplateKitZipFile functions. This…
- risk 0.57cvss 8.8epss 0.01
MCMS v5.2.10 and below was discovered to contain an arbitrary file write vulnerability via the component ms/template/writeFileContent.do.
- risk 0.57cvss 8.8epss 0.01
When uploading an image file to a bulletin board developed with XpressEngine, a vulnerability in which an arbitrary file can be uploaded due to insufficient verification of the file. A remote attacker can use this vulnerability to execute arbitrary code on the server where the…
- risk 0.57cvss 8.8epss 0.03
Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.
- risk 0.57cvss 9.8epss 0.02
Badaso version 2.6.0 allows an unauthenticated remote attacker to execute arbitrary code remotely on the server. This is possible because the application does not properly validate the data uploaded by users.
- risk 0.57cvss 9.8epss 0.01
There is an arbitrary file upload vulnerability in FeehiCMS 2.0.8 at the head image upload, that allows attackers to execute relevant PHP code.
- risk 0.57cvss 8.8epss 0.01
An arbitrary file upload vulnerability in the Advertising Management module of Feehi CMS v2.1.1 allows attackers to execute arbitrary code via a crafted PHP file.
- risk 0.57cvss 9.8epss 0.01
DataEase v1.11.1 was discovered to contain a arbitrary file write vulnerability via the parameter dataSourceId.