VYPR

CWE-434

Unrestricted Upload of File with Dangerous Type

BaseDraftLikelihood: Medium

Description

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1

CVEs mapped to this weakness (1,669)

page 38 of 84
  • CVE-2020-21489CriJun 20, 2023
    risk 0.57cvss 9.8epss 0.01

    File Upload vulnerability in Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component.

  • CVE-2020-21174CriJun 20, 2023
    risk 0.57cvss 9.8epss 0.01

    File Upload vulenrability in liufee CMS v.2.0.7.1 allows a remote attacker to execute arbitrary code via the image suffix function.

  • CVE-2023-33498HigJun 7, 2023
    risk 0.57cvss 8.8epss 0.01

    alist <=3.16.3 is vulnerable to Incorrect Access Control. Low privilege accounts can upload any file.

  • CVE-2022-4949HigJun 7, 2023
    risk 0.57cvss 8.8epss 0.02

    The AdSanity plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajax_upload' function in versions up to, and including, 1.8.1. This makes it possible for authenticated attackers with Contributor+ level privileges to upload…

  • CVE-2021-4382HigJun 7, 2023
    risk 0.57cvss 8.8epss 0.02

    The Recently plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the fetch_external_image() function in versions up to, and including, 3.0.4. This makes it possible for authenticated attackers to upload arbitrary files on the…

  • CVE-2021-4354HigJun 7, 2023
    risk 0.57cvss 8.8epss 0.02

    The PWA for WP & AMP for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the pwaforwp_splashscreen_uploader function in versions up to, and including, 1.7.32. This makes it possible for authenticated attackers to upload arbitrary files on…

  • CVE-2020-36701HigJun 7, 2023
    risk 0.57cvss 8.8epss 0.02

    The Page Builder: KingComposer plugin for WordPress is vulnerable to Arbitrary File Uploads in versions up to, and including, 2.9.3 via the 'process_bulk_action' function in the 'kingcomposer/includes/kc.extensions.php' file. This makes it possible for authenticated users with…

  • CVE-2020-22755HigMay 8, 2023
    risk 0.57cvss 8.8epss 0.01

    File upload vulnerability in MCMS 5.0 allows attackers to execute arbitrary code via a crafted thumbnail. A different vulnerability than CVE-2022-31943.

  • CVE-2022-45802CriMay 1, 2023
    risk 0.57cvss 9.8epss 0.01

    Streampark allows any users to upload a jar as application, but there is no mandatory verification of the uploaded file type, causing users to upload some high-risk files, and may upload them to any directory, Users of the affected versions should upgrade to Apache StreamPark…

  • CVE-2023-0265HigApr 4, 2023
    risk 0.57cvss 8.8epss 0.02

    Uvdesk version 1.1.1 allows an authenticated remote attacker to execute commands on the server. This is possible because the application does not properly validate profile pictures uploaded by customers.

  • CVE-2023-25655CriMar 23, 2023
    risk 0.57cvss 9.8epss 0.01

    baserCMS is a Content Management system. Prior to version 4.7.5, any file may be uploaded on the management system of baserCMS. Version 4.7.5 contains a patch.

  • CVE-2023-25654CriMar 23, 2023
    risk 0.57cvss 9.8epss 0.02

    baserCMS is a Content Management system. Prior to version 4.7.5, there is a Remote Code Execution (RCE) Vulnerability in the management system of baserCMS. Version 4.7.5 contains a patch.

  • CVE-2021-4330HigMar 7, 2023
    risk 0.57cvss 8.8epss 0.02

    The Envato Elements & Download and Template Kit – Import plugins for WordPress are vulnerable to arbitrary file uploads due to insufficient validation of file type upon extracting uploaded Zip files in the installFreeTemplateKit and uploadTemplateKitZipFile functions. This…

  • CVE-2022-47042HigJan 26, 2023
    risk 0.57cvss 8.8epss 0.01

    MCMS v5.2.10 and below was discovered to contain an arbitrary file write vulnerability via the component ms/template/writeFileContent.do.

  • CVE-2021-26642HigJan 20, 2023
    risk 0.57cvss 8.8epss 0.01

    When uploading an image file to a bulletin board developed with XpressEngine, a vulnerability in which an arbitrary file can be uploaded due to insufficient verification of the file. A remote attacker can use this vulnerability to execute arbitrary code on the server where the…

  • CVE-2022-44289HigDec 6, 2022
    risk 0.57cvss 8.8epss 0.03

    Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.

  • CVE-2022-41711CriOct 25, 2022
    risk 0.57cvss 9.8epss 0.02

    Badaso version 2.6.0 allows an unauthenticated remote attacker to execute arbitrary code remotely on the server. This is possible because the application does not properly validate the data uploaded by users.

  • CVE-2020-21516CriSep 6, 2022
    risk 0.57cvss 9.8epss 0.01

    There is an arbitrary file upload vulnerability in FeehiCMS 2.0.8 at the head image upload, that allows attackers to execute relevant PHP code.

  • CVE-2022-34971HigJul 27, 2022
    risk 0.57cvss 8.8epss 0.01

    An arbitrary file upload vulnerability in the Advertising Management module of Feehi CMS v2.1.1 allows attackers to execute arbitrary code via a crafted PHP file.

  • CVE-2022-34115CriJul 22, 2022
    risk 0.57cvss 9.8epss 0.01

    DataEase v1.11.1 was discovered to contain a arbitrary file write vulnerability via the parameter dataSourceId.