VYPR

CWE-434

Unrestricted Upload of File with Dangerous Type

BaseDraftLikelihood: Medium

Description

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1

CVEs mapped to this weakness (1,669)

page 60 of 84
  • CVE-2020-9472MedMar 16, 2020
    risk 0.42cvss 6.5epss 0.02

    Umbraco CMS 8.5.3 allows an authenticated file upload (and consequently Remote Code Execution) via the Install Package functionality.

  • CVE-2020-5188MedFeb 24, 2020
    risk 0.42cvss 6.5epss 0.02

    DNN (formerly DotNetNuke) through 9.4.4 has Insecure Permissions.

  • CVE-2019-7861HigAug 2, 2019
    risk 0.42cvss 7.5epss 0.02

    Insufficient server-side validation of user input could allow an attacker to bypass file upload restrictions in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.

  • CVE-2018-2420MedMay 9, 2018
    risk 0.42cvss 6.5epss 0.02

    SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to upload any file (including script files) without proper file format validation.

  • CVE-2017-6931MedMar 1, 2018
    risk 0.42cvss 6.5epss 0.01

    In Drupal versions 8.4.x versions before 8.4.5 the Settings Tray module has a vulnerability that allows users to update certain data that they do not have the permissions for. If you have implemented a Settings Tray form in contrib or a custom module, the correct access checks…

  • CVE-2017-16594MedJan 23, 2018
    risk 0.42cvss 6.5epss 0.03

    This vulnerability allows remote attackers to create arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.…

  • CVE-2017-15054HigNov 27, 2017
    risk 0.42cvss 7.5epss 0.04

    An arbitrary file upload vulnerability, present in TeamPass before 2.1.27.9, allows remote authenticated users to upload arbitrary files leading to Remote Command Execution. To exploit this vulnerability, an authenticated attacker has to tamper with parameters of a request to…

  • CVE-2015-4463MedJul 25, 2017
    risk 0.42cvss 6.5epss 0.01

    The file_manager component in eFront CMS before 3.6.15.5 allows remote authenticated users to bypass intended file-upload restrictions by appending a crafted parameter to the file URL.

  • CVE-2015-4462MedJul 25, 2017
    risk 0.42cvss 6.5epss 0.01

    Absolute path traversal vulnerability in the file_manager component of eFront CMS before 3.6.15.5 allows remote authenticated users to read arbitrary files via a full pathname in the "Upload file from url" field in the file manager for professor.php.

  • CVE-2017-7989MedApr 25, 2017
    risk 0.42cvss 6.5epss 0.01

    In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate MIME type checks allowed low-privilege users to upload swf files even if they were explicitly forbidden.

  • CVE-2026-11333MedJun 5, 2026
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. The impacted element is an unknown function of the file dashboard_page/forms/upload_student_data.php of the…

  • CVE-2026-42538MedJun 4, 2026
    risk 0.41cvss 6.3epss 0.00

    IRIS is a web collaborative platform that helps incident responders share technical details during investigations. Versions prior to 2.4.28 do not properly validate uploaded files. The application can therefore be misused to host phishing pages, amongst other things. This also…

  • CVE-2026-10807MedJun 4, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in mjperpinosa stumasy. The impacted element is an unknown function of the file application/PHP/objects/profiles/change_profile_image.php. Executing a manipulation of the argument pr_profile_image can lead to unrestricted upload. The attack may be…

  • CVE-2026-10806MedJun 4, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in mjperpinosa stumasy. The affected element is an unknown function of the file application/PHP/objects/updates/add_post.php. Performing a manipulation of the argument up_file_to_post results in unrestricted upload. The attack may be initiated remotely.…

  • CVE-2026-10205MedJun 1, 2026
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in Metasoft 美特软件 MetaCRM 6.4.0. The impacted element is an unknown function of the file develop/systparam/softlogo/upload.jsp. Such manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has…

  • CVE-2026-10172MedMay 31, 2026
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in Bdtask Multi-Store Inventory Management System 1.0. The affected element is the function Upload of the file application/modules/dashboard/controllers/Module.php of the component Component Module. The manipulation of the argument module…

  • CVE-2026-42879MedMay 27, 2026
    risk 0.41cvss 6.3epss 0.00

    FacturaScripts is an open source accounting and invoicing software. In 2025.81 and earlier, an authenticated unrestricted file upload vulnerability exists in FacturaScripts' product image upload functionality. An attacker with valid credentials can upload a PHP file disguised as…

  • CVE-2026-9445MedMay 25, 2026
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in SourceCodester Simple POS and Inventory System 1.0. Impacted is an unknown function of the file /admin/addproduct.php of the component File Extension Handler. This manipulation of the argument image causes unrestricted upload. Remote exploitation of the…

  • CVE-2026-9374MedMay 24, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in yangzongzhuan RuoYi-Vue up to 3.9.2. Impacted is the function FileUploadUtils.upload of the file /common/upload of the component Common Upload Endpoint. Performing a manipulation results in unrestricted upload. The attack is possible to be carried…

  • CVE-2025-65416MedMay 11, 2026
    risk 0.41cvss 6.3epss 0.00

    docuFORM Managed Print Service Client 11.11c is vulnerable to arbitrary file upload via pmupdate.php.