VYPR

CWE-434

Unrestricted Upload of File with Dangerous Type

BaseDraftLikelihood: Medium

Description

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1

CVEs mapped to this weakness (1,669)

page 47 of 84
  • CVE-2026-1756HigFeb 4, 2026
    risk 0.50cvss 8.8epss 0.01

    The WP FOFT Loader plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the 'WP_FOFT_Loader_Mimes::file_and_ext' function in all versions up to, and including, 2.1.39. This makes it possible for authenticated attackers, with…

  • CVE-2026-1730HigFeb 3, 2026
    risk 0.50cvss 8.8epss 0.01

    The OS DataHub Maps plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the 'OS_DataHub_Maps_Admin::add_file_and_ext' function in all versions up to, and including, 1.8.3. This makes it possible for authenticated attackers, with…

  • CVE-2025-12957HigJan 16, 2026
    risk 0.50cvss 8.8epss 0.01

    The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 4.5.7. This is due to insufficient file type validation detecting VTT files, allowing double extension files to bypass sanitization while being accepted…

  • CVE-2025-13062HigJan 15, 2026
    risk 0.50cvss 8.8epss 0.01

    The Supreme Modules Lite plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 2.5.62. This is due to insufficient file type validation detecting JSON files, allowing double extension files to bypass sanitization while being accepted…

  • CVE-2025-15067HigDec 29, 2025
    risk 0.50cvss 7.7epss 0.00

    Unrestricted Upload of File with Dangerous Type vulnerability in Innorix Innorix WP allows Upload a Web Shell to a Web Server.This issue affects Innorix WP from All versions If the "exam" directory exists under the directory where the product is installed (ex: innorix/exam)

  • CVE-2025-13065HigDec 6, 2025
    risk 0.50cvss 8.8epss 0.07

    The Starter Templates plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 4.4.41. This is due to insufficient file type validation detecting WXR files, allowing double extension files to bypass sanitization while being accepted as a…

  • CVE-2025-12966HigDec 6, 2025
    risk 0.50cvss 8.8epss 0.00

    The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the resolve_import_directory() function in versions 4.5.4 to 4.5.7. This makes it possible for authenticated attackers, with Author-level access and…

  • CVE-2025-12181HigDec 5, 2025
    risk 0.50cvss 8.8epss 0.01

    The ContentStudio plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the cstu_update_post() function in all versions up to, and including, 1.3.7. This makes it possible for authenticated attackers, with Author-level access and…

  • CVE-2025-13066HigDec 5, 2025
    risk 0.50cvss 8.8epss 0.00

    The Demo Importer Plus plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 2.0.6. This is due to insufficient file type validation detecting WXR files, allowing double extension files to bypass sanitization while being accepted as a…

  • CVE-2025-13536HigNov 27, 2025
    risk 0.50cvss 8.8epss 0.01

    The Blubrry PowerPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in all versions up to, and including, 11.15.2. This is due to the plugin validating file extensions but not halting execution when validation fails in the…

  • CVE-2025-13156HigNov 21, 2025
    risk 0.50cvss 8.8epss 0.01

    The Vitepos – Point of Sale (POS) for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the insert_media_attachment() function in all versions up to, and including, 3.3.0. This is due to the…

  • CVE-2025-12846HigNov 11, 2025
    risk 0.50cvss 8.8epss 0.01

    The Blocksy Companion plugin for WordPress is vulnerable to authenticated arbitrary file upload in all versions up to, and including, 2.1.19. This is due to insufficient file type validation detecting SVG files, allowing double extension files to bypass sanitization while being…

  • CVE-2025-10647HigSep 19, 2025
    risk 0.50cvss 8.8epss 0.01

    The Embed PDF for WPForms plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_handler_download_pdf_media function in all versions up to, and including, 1.1.5. This makes it possible for authenticated attackers, with…

  • CVE-2025-9216HigSep 17, 2025
    risk 0.50cvss 8.8epss 0.01

    The StoreEngine – Powerful WordPress eCommerce Plugin for Payments, Memberships, Affiliates, Sales & More plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the import() function in all versions up to, and including, 1.5.0. This…

  • CVE-2025-7847HigJul 31, 2025
    risk 0.50cvss 8.8epss 0.01

    The AI Engine plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the rest_simpleFileUpload() function in versions 2.9.3 and 2.9.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to…

  • CVE-2025-3455HigMay 9, 2025
    risk 0.50cvss 8.8epss 0.01

    The 1 Click WordPress Migration Plugin – 100% FREE for a limited time plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'start_restore' function in all versions up to, and including, 2.2. This makes it possible for…

  • CVE-2025-2008HigApr 1, 2025
    risk 0.50cvss 8.8epss 0.01

    The Import Export Suite for CSV and XML Datafeed plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the import_single_post_as_csv() function in all versions up to, and including, 7.19. This makes it possible for authenticated…

  • CVE-2024-53982HigDec 4, 2024
    risk 0.50cvss epss 0.00

    ZOO-Project is a C-based WPS (Web Processing Service) implementation. A path traversal vulnerability was discovered in Zoo-Project Echo example. The Echo example available by default in Zoo installs implements file caching, which can be controlled by user-given parameters. No…

  • CVE-2024-27733HigMar 7, 2024
    risk 0.50cvss 7.7epss 0.00

    File Upload vulnerability in Byzro Network Smart s42 Management Platform v.S42 allows a local attacker to execute arbitrary code via the useratte/userattestation.php component.

  • CVE-2023-6976HigDec 20, 2023
    risk 0.50cvss 8.8epss 0.01

    This vulnerability is capable of writing arbitrary files into arbitrary locations on the remote filesystem in the context of the server process.