VYPR

CWE-434

Unrestricted Upload of File with Dangerous Type

BaseDraftLikelihood: Medium

Description

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1

CVEs mapped to this weakness (1,669)

page 84 of 84
  • CVE-2006-6994Feb 12, 2007
    risk 0.00cvss epss 0.02

    Unrestricted file upload vulnerability in add.asp in OzzyWork Gallery, possibly 2.0 and earlier, allows remote attackers to upload and execute arbitrary ASP files by removing the client-side security checks.

  • CVE-2006-5845Nov 10, 2006
    risk 0.00cvss epss 0.02

    Unrestricted file upload vulnerability in index.php in Speedywiki 2.0 allows remote authenticated users to upload and execute arbitrary PHP code by setting the upload parameter to 1.

  • CVE-2006-4471Aug 31, 2006
    risk 0.00cvss epss 0.02

    The Admin Upload Image functionality in Joomla! before 1.0.11 allows remote authenticated users to upload files outside of the /images/stories/ directory via unspecified vectors.

  • CVE-2006-2428May 17, 2006
    risk 0.00cvss epss 0.04

    add.asp in DUware DUbanner 3.1 allows remote attackers to execute arbitrary code by uploading files with arbitrary extensions, such as ASP files, probably due to client-side enforcement that can be bypassed. NOTE: some of these details are obtained from third party information,…

  • CVE-2005-3288Oct 23, 2005
    risk 0.00cvss epss 0.01

    Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the "compose page" feature, then accessing the file from the cache directory before saving or sending the message.

  • CVE-2005-1868Jun 9, 2005
    risk 0.00cvss epss 0.02

    I-Man 0.9, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by uploading a file attachment with a .php extension.

  • CVE-2002-1841Dec 31, 2002
    risk 0.00cvss epss 0.02

    The document management module in NOLA 1.1.1 and 1.1.2 does not restrict the types of files that are uploaded, which allows remote attackers to upload and execute arbitrary PHP files with extensions such as .php4.

  • CVE-2001-0901Nov 19, 2001
    risk 0.00cvss epss 0.03

    Hypermail allows remote attackers to execute arbitrary commands on a server supporting SSI via an attachment with a .shtml extension, which is archived on the server and can then be executed by requesting the URL for the attachment.

  • CVE-2001-1099Sep 7, 2001
    risk 0.00cvss epss 0.03

    The default configuration of Norton AntiVirus for Microsoft Exchange 2000 2.x allows remote attackers to identify the recipient's INBOX file path by sending an email with an attachment containing malicious content, which includes the path in the rejection notice.