VYPR

CWE-434

Unrestricted Upload of File with Dangerous Type

BaseDraftLikelihood: Medium

Description

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1

CVEs mapped to this weakness (1,669)

page 63 of 84
  • CVE-2023-6558HigJan 11, 2024
    risk 0.40cvss 7.2epss 0.01

    The Export and Import Users and Customers plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'upload_import_file' function in versions up to, and including, 2.4.8. This makes it possible for authenticated attackers with…

  • CVE-2023-6826HigDec 15, 2023
    risk 0.40cvss 7.2epss 0.01

    The E2Pdf plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'import_action' function in versions up to, and including, 1.20.25. This makes it possible for authenticated attackers with a role that the administrator…

  • CVE-2023-6219HigNov 28, 2023
    risk 0.40cvss 7.2epss 0.01

    The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on the 'bookingpress_process_upload' function in versions up to, and including, 1.0.76. This makes it possible for authenticated attackers with administrator-level…

  • CVE-2023-5860HigNov 2, 2023
    risk 0.40cvss 7.2epss 0.01

    The Icons Font Loader plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the upload function in all versions up to, and including, 1.1.2. This makes it possible for authenticated attackers, with administrator-level access and…

  • CVE-2018-4921MedMay 19, 2018
    risk 0.40cvss 6.1epss 0.04

    Adobe Connect versions 9.7 and earlier have an exploitable unrestricted SWF file upload vulnerability. Successful exploitation could lead to information disclosure.

  • CVE-2026-33704HigApr 10, 2026
    risk 0.39cvss 7.1epss 0.00

    Chamilo LMS is a learning management system. Prior to 1.11.38, any authenticated user (including students) can write arbitrary content to files on the server via the BigUpload endpoint. The key parameter controls the filename and the raw POST body becomes the file content. While…

  • CVE-2026-41397MedApr 28, 2026
    risk 0.37cvss 6.8epss 0.00

    OpenClaw before 2026.3.31 contains a sandbox escape vulnerability allowing attackers to traverse directory boundaries through symlink exploitation during file synchronization operations. Remote attackers can bypass sandbox restrictions by crafting malicious symlinks in mirror…

  • CVE-2025-36074MedApr 23, 2026
    risk 0.36cvss 5.5epss 0.00

    IBM Security Verify Directory (Container) 10.0.0 through 10.0.0.3 IBM Security Verify Directory could be vulnerable to malicious file upload by not validating file type. A privileged user could upload malicious files into the system that can be sent to victims for performing…

  • CVE-2026-4830MedMar 26, 2026
    risk 0.36cvss 5.6epss 0.00

    A vulnerability was identified in kalcaddle kodbox 1.64. This issue affects the function Add of the file app/controller/explorer/userShare.class.php of the component Public Share Handler. Such manipulation leads to unrestricted upload. The attack can be executed remotely. This…

  • CVE-2024-35593MedMay 24, 2024
    risk 0.36cvss 5.5epss 0.00

    An arbitrary file upload vulnerability in the File preview function of Raingad IM v4.1.4 allows attackers to execute arbitrary code via uploading a crafted PDF file.

  • CVE-2024-0699MedFeb 5, 2024
    risk 0.36cvss 6.6epss 0.01

    The AI Engine: Chatbots, Generators, Assistants, GPT 4 and more! plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'add_image_from_url' function in all versions up to, and including, 2.1.4. This makes it possible for…

  • CVE-2023-6449MedDec 1, 2023
    risk 0.36cvss 6.6epss 0.02

    The Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'validate' function and insufficient blocklisting on the 'wpcf7_antiscript_file_name' function in versions up to, and including, 5.8.3. This makes it…

  • CVE-2023-6133MedNov 15, 2023
    risk 0.36cvss 6.6epss 0.01

    The Forminator plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient blacklisting on the 'forminator_allowed_mime_types' function in versions up to, and including, 1.27.0. This makes it possible for authenticated attackers with administrator-level…

  • CVE-2016-0354MedAug 29, 2017
    risk 0.36cvss 5.5epss 0.01

    IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user to upload a malicious file to a Sametime meeting room, that could be downloaded by unsuspecting users which could be executed with user privileges. IBM X-Force ID: 111893.

  • CVE-2026-39527MedJun 15, 2026
    risk 0.35cvss 5.4epss 0.00

    Subscriber Arbitrary File Upload in WpStream < 4.11.2 versions.

  • CVE-2026-36722MedJun 9, 2026
    risk 0.35cvss 5.4epss 0.00

    An authenticated arbitrary file upload vulnerability in the /api/create-car-image component of bookcars v8.3 allows attackers to execute arbitrary code via uploading a crafted file.

  • CVE-2026-34031MedJun 9, 2026
    risk 0.35cvss 6.5epss 0.00

    Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. The server did not sufficiently validate user-supplied image URLs, allowing arbitrary external content to be embedded as profile images, which could…

  • CVE-2026-33582MedJun 9, 2026
    risk 0.35cvss 6.5epss 0.00

    Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. A crafted TIFF image could trigger excessive memory allocation during image decoding, allowing an authenticated user to cause the server process to…

  • CVE-2025-61681MedOct 3, 2025
    risk 0.35cvss 5.4epss 0.00

    KUNO CMS is a fully deployable full-stack blog application. Versions 1.3.13 and below contain validation flaws in its file upload functionality that can be exploited for stored XSS. The upload endpoint only validates file types based on Content-Type headers, lacks file content…

  • CVE-2025-10000MedSep 30, 2025
    risk 0.35cvss 6.4epss 0.00

    The Qyrr – simply and modern QR-Code creation plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the blob_to_file() function in all versions up to, and including, 2.0.7. This makes it possible for authenticated attackers, with…