VYPR

CWE-434

Unrestricted Upload of File with Dangerous Type

BaseDraftLikelihood: Medium

Description

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1

CVEs mapped to this weakness (1,669)

page 77 of 84
  • CVE-2023-2034Apr 14, 2023
    risk 0.00cvss epss 0.73

    Unrestricted Upload of File with Dangerous Type in GitHub repository froxlor/froxlor prior to 2.0.14.

  • CVE-2023-1970Apr 10, 2023
    risk 0.00cvss epss 0.01

    ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as problematic, has been found in yuan1994 tpAdmin 1.3.12. This issue affects the function Upload of the file application\admin\controller\Upload.php. The manipulation of the argument file leads to…

  • CVE-2023-27603Apr 10, 2023
    risk 0.00cvss epss 0.02

    In Apache Linkis <=1.3.1, due to the Manager module engineConn material upload does not check the zip path, This is a Zip Slip issue, which will lead to a potential RCE vulnerability. We recommend users upgrade the version of Linkis to version 1.3.2.

  • CVE-2023-27602Apr 10, 2023
    risk 0.00cvss epss 0.02

    In Apache Linkis <=1.3.1, The PublicService module uploads files without restrictions on the path to the uploaded files, and file types. We recommend users upgrade the version of Linkis to version 1.3.2.  For versions <=1.3.1, we suggest turning on the file path check…

  • CVE-2023-0265Apr 4, 2023
    risk 0.00cvss epss 0.02

    Uvdesk version 1.1.1 allows an authenticated remote attacker to execute commands on the server. This is possible because the application does not properly validate profile pictures uploaded by customers.

  • CVE-2023-1800Apr 2, 2023
    risk 0.00cvss epss 0.04

    A vulnerability, which was classified as critical, has been found in sjqzhang go-fastdfs up to 1.4.3. Affected by this issue is the function upload of the file /group1/uploa of the component File Upload Handler. The manipulation leads to path traversal: '../filedir'. The attack…

  • CVE-2023-25655Mar 23, 2023
    risk 0.00cvss epss 0.01

    baserCMS is a Content Management system. Prior to version 4.7.5, any file may be uploaded on the management system of baserCMS. Version 4.7.5 contains a patch.

  • CVE-2023-25654Mar 23, 2023
    risk 0.00cvss epss 0.02

    baserCMS is a Content Management system. Prior to version 4.7.5, there is a Remote Code Execution (RCE) Vulnerability in the management system of baserCMS. Version 4.7.5 contains a patch.

  • CVE-2023-1313Mar 10, 2023
    risk 0.00cvss epss 0.01

    Unrestricted Upload of File with Dangerous Type in GitHub repository cockpit-hq/cockpit prior to 2.4.1.

  • CVE-2023-23937Feb 3, 2023
    risk 0.00cvss epss 0.00

    Pimcore is an Open Source Data & Experience Management Platform: PIM, MDM, CDP, DAM, DXP/CMS & Digital Commerce. The upload functionality for updating user profile does not properly validate the file content-type, allowing any authenticated user to bypass this security check by…

  • CVE-2021-41231Jan 27, 2023
    risk 0.00cvss epss 0.01

    OpenMage LTS is an e-commerce platform. Prior to versions 19.4.22 and 20.0.19, an administrator with the permissions to upload files via DataFlow and to create products was able to execute arbitrary code via the convert profile. Versions 19.4.22 and 20.0.19 contain a patch for…

  • CVE-2022-47042Jan 24, 2023
    risk 0.00cvss epss 0.01

    MCMS v5.2.10 and below was discovered to contain an arbitrary file write vulnerability via the component ms/template/writeFileContent.do.

  • CVE-2023-22726Jan 20, 2023
    risk 0.00cvss epss 0.01

    act is a project which allows for local running of github actions. The artifact server that stores artifacts from Github Action runs does not sanitize path inputs. This allows an attacker to download and overwrite arbitrary files on the host from a Github Action. This issue may…

  • CVE-2021-26642Jan 20, 2023
    risk 0.00cvss epss 0.01

    When uploading an image file to a bulletin board developed with XpressEngine, a vulnerability in which an arbitrary file can be uploaded due to insufficient verification of the file. A remote attacker can use this vulnerability to execute arbitrary code on the server where the…

  • CVE-2022-4732Dec 24, 2022
    risk 0.00cvss epss 0.38

    Unrestricted Upload of File with Dangerous Type in GitHub repository microweber/microweber prior to 1.3.2.

  • CVE-2021-36573Dec 15, 2022
    risk 0.00cvss epss 0.00

    File Upload vulnerability in Feehi CMS thru 2.1.1 allows attackers to run arbitrary code via crafted image upload.

  • CVE-2022-45968Dec 12, 2022
    risk 0.00cvss epss 0.01

    Alist v3.4.0 is vulnerable to File Upload. A user with only file upload permission can upload any file to any folder (even a password protected one).

  • CVE-2022-46157Dec 9, 2022
    risk 0.00cvss epss 0.01

    Akeneo PIM is an open source Product Information Management (PIM). Akeneo PIM Community Edition versions before v5.0.119 and v6.0.53 allows remote authenticated users to execute arbitrary PHP code on the server by uploading a crafted image. Akeneo PIM Community Edition after the…

  • CVE-2022-44289Dec 6, 2022
    risk 0.00cvss epss 0.03

    Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.

  • CVE-2022-3771Oct 31, 2022
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, has been found in easyii CMS. This issue affects the function file of the file helpers/Upload.php of the component File Upload Management. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The…