VYPR

CWE-434

Unrestricted Upload of File with Dangerous Type

BaseDraftLikelihood: Medium

Description

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1

CVEs mapped to this weakness (1,669)

page 48 of 84
  • CVE-2023-48217HigNov 14, 2023
    risk 0.50cvss 8.8epss 0.01

    Statamic is a flat-first, Laravel + Git powered CMS designed for building websites. In affected versions certain additional PHP files crafted to look like images may be uploaded regardless of mime type validation rules. This affects front-end forms using the "Forms" feature, and…

  • CVE-2023-47621HigNov 13, 2023
    risk 0.50cvss 8.8epss 0.01

    Guest Entries is a php library which allows users to create, update & delete entries from the front-end of a site. In affected versions the file uploads feature did not prevent the upload of PHP files. This may lead to code execution on the server by authenticated users. This…

  • CVE-2023-1313HigMar 10, 2023
    risk 0.50cvss 8.8epss 0.01

    Unrestricted Upload of File with Dangerous Type in GitHub repository cockpit-hq/cockpit prior to 2.4.1.

  • CVE-2022-45968HigDec 12, 2022
    risk 0.50cvss 8.8epss 0.01

    Alist v3.4.0 is vulnerable to File Upload. A user with only file upload permission can upload any file to any folder (even a password protected one).

  • CVE-2022-46157HigDec 9, 2022
    risk 0.50cvss 8.8epss 0.01

    Akeneo PIM is an open source Product Information Management (PIM). Akeneo PIM Community Edition versions before v5.0.119 and v6.0.53 allows remote authenticated users to execute arbitrary PHP code on the server by uploading a crafted image. Akeneo PIM Community Edition after the…

  • CVE-2022-2111HigJun 17, 2022
    risk 0.50cvss 8.8epss 0.01

    Unrestricted Upload of File with Dangerous Type in GitHub repository inventree/inventree prior to 0.7.2.

  • CVE-2021-4080HigJan 12, 2022
    risk 0.50cvss 8.8epss 0.01

    crater is vulnerable to Unrestricted Upload of File with Dangerous Type

  • CVE-2021-3846HigOct 19, 2021
    risk 0.50cvss 8.8epss 0.01

    firefly-iii is vulnerable to Unrestricted Upload of File with Dangerous Type

  • CVE-2019-8093HigNov 5, 2019
    risk 0.50cvss 8.8epss 0.01

    An arbitrary file access vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can leverage file upload controller for downloadable products to read/delete an arbitary files.

  • CVE-2019-16318HigSep 14, 2019
    risk 0.50cvss 8.8epss 0.01

    In Pimcore before 5.7.1, an attacker with limited privileges can bypass file-extension restrictions via a 256-character filename, as demonstrated by the failure of automatic renaming of .php to .php.txt for long filenames, a different vulnerability than CVE-2019-10867 and…

  • CVE-2018-14857HigAug 6, 2018
    risk 0.50cvss 8.8epss 0.04

    Unrestricted file upload (with remote code execution) in require/mail/NotificationMail.php in Webconsole in OCS Inventory NG OCS Inventory Server through 2.5 allows a privileged user to gain access to the server via a template file containing PHP code, because file extensions…

  • CVE-2017-2617HigMay 22, 2018
    risk 0.50cvss 7.6epss 0.02

    hawtio before version 1.5.5 is vulnerable to remote code execution via file upload. An attacker could use this vulnerability to upload a crafted file which could be executed on a target machine where hawtio is deployed.

  • CVE-2014-9619HigSep 19, 2017
    risk 0.50cvss 7.2epss 0.07

    Unrestricted file upload vulnerability in webadmin/ajaxfilemanager/ajaxfilemanager.php in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote authenticated users with admin privileges on the Cloud Manager web console to execute arbitrary PHP code…

  • CVE-2026-41587HigMay 7, 2026
    risk 0.49cvss epss 0.01

    CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. From version 0.26.0.0 to before version 0.31.7.0, a theme upload feature allows any authenticated backend user with theme-upload…

  • CVE-2025-12048HigNov 12, 2025
    risk 0.49cvss 7.5epss 0.00

    An arbitrary file upload vulnerability was reported in the Lenovo Scanner Pro client during an internal security assessment that could allow remote code execution or unauthorized control of the affected system.

  • CVE-2025-9212HigOct 3, 2025
    risk 0.49cvss 7.5epss 0.00

    The WP Dispatcher plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the wp_dispatcher_process_upload() function in all versions up to, and including, 1.2.0. This makes it possible for authenticated attackers, with…

  • CVE-2025-59835HigOct 2, 2025
    risk 0.49cvss epss 0.00

    LangBot is a global IM bot platform designed for LLMs. In versions 4.1.0 up to but not including 4.3.5, authorized attackers can exploit the /api/v1/files/documents interface to perform arbitrary file uploads. Since this interface does not strictly restrict the storage directory…

  • CVE-2025-10009HigSep 22, 2025
    risk 0.49cvss epss 0.00

    Incorrect handling of uploaded files in the admin "Restore" function in Invoice Ninja <= 5.11.72 allows attackers with admin credentials to execute arbitrary code on the server via uploaded .php files.

  • CVE-2025-53119HigAug 25, 2025
    risk 0.49cvss 7.5epss 0.11

    An unauthenticated unrestricted file upload vulnerability allows an attacker to upload malicious binaries and scripts to the server.

  • CVE-2025-47187HigJul 23, 2025
    risk 0.49cvss 7.5epss 0.01

    A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones through 6.4 SP4 (R6.4.0.4006), and the 6970 Conference Unit through 6.4 SP4 (R6.4.0.4006) or version V1 R0.1.0, could allow an unauthenticated attacker to perform a file upload attack due to…