CWE-434— Unrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.— MITRE CWE catalog
4,072 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-434page 21 of 82
- CVE-2021-34551HIGHCVSS 8.1EG 8.12021-06-16
PHPMailer before 6.5.0 on Windows allows remote code execution if lang_path is untrusted data and has a UNC pathname.
- CVE-2021-34619HIGHCVSS 8.8EG 8.82021-07-21
The WooCommerce Stock Manager WordPress plugin is vulnerable to Cross-Site Request Forgery leading to Arbitrary File Upload in versions up to, and including, 2.5.7 due to missing nonce and file validation in the /woocommerce-stock-manager/…
- CVE-2021-34623CRITICALCVSS 9.8EG 9.82021-07-07
A vulnerability in the image uploader component found in the ~/src/Classes/ImageUploader.php file of the ProfilePress WordPress plugin made it possible for users to upload arbitrary files during user registration or during profile updates.…
- CVE-2021-34624CRITICALCVSS 9.8EG 9.82021-07-07
A vulnerability in the file uploader component found in the ~/src/Classes/FileUploader.php file of the ProfilePress WordPress plugin made it possible for users to upload arbitrary files during user registration or during profile updates. T…
- CVE-2021-34639HIGHCVSS 7.5EG 8.82021-08-05
Authenticated File Upload in WordPress Download Manager <= 3.1.24 allows authenticated (Author+) users to upload files with a double extension, e.g. "payload.php.png" which is executable in some configurations. This issue affects: WordPres…
- CVE-2021-34685LOWCVSS 2.7EG 2.72021-11-08
UploadService in Hitachi Vantara Pentaho Business Analytics through 9.1 does not properly verify uploaded user files, which allows an authenticated user to upload various files of different file types. Specifically, a .jsp file is not allo…
- CVE-2021-34995HIGHCVSS 8.8EG 8.82022-01-13
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be …
- CVE-2021-34997HIGHCVSS 8.8EG 8.82022-01-13
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be …
- CVE-2021-35002HIGHCVSS 8.8EG 8.82024-05-07
BMC Track-It! Unrestricted File Upload Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of BMC Track-It!. Authentication is required to exploit this vulnera…
- CVE-2021-35244MEDIUMCVSS 6.8EG 7.22021-12-20
The "Log alert to a file" action within action management enables any Orion Platform user with Orion alert management rights to write to any file. An attacker with Orion alert management rights could use this vulnerability to perform an un…
- CVE-2021-35261CRITICALCVSS 9.8EG 9.82023-02-17
File Upload Vulnerability in Yupoxion BearAdmin before commit 10176153528b0a914eb4d726e200fd506b73b075 allows attacker to execute arbitrary remote code via the Upfile function of the extend/tools/Ueditor endpoint.
- CVE-2021-35290HIGHCVSS 7.2EG 7.22023-02-24
File Upload vulnerability in balerocms-src 0.8.3 allows remote attackers to run arbitrary code via rich text editor on /admin/main/mod-blog page.
- CVE-2021-35532MEDIUMCVSS 6.7EG 6.72022-06-07
A vulnerability exists in the file upload validation part of Hitachi Energy TXpert Hub CoreTec 4 product. The vulnerability allows an attacker or malicious agent who manages to gain access to the system and obtain an account with sufficien…
- CVE-2021-35963CRITICALCVSS 9.8EG 9.82021-07-19
The specific parameter of upload function of the Orca HCM digital learning platform does not filter file format, which allows remote unauthenticated attackers to upload files containing malicious script to execute RCE attacks.
- CVE-2021-36040CRITICALCVSS 9.1EG 9.12021-09-01
Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper input validation vulnerability. An attacker with admin privileges can upload a specially crafted file to bypass file …
- CVE-2021-36042CRITICALCVSS 9.1EG 9.12021-09-01
Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper input validation vulnerability in the API File Option Upload Extension. An attacker with Admin privileges can achieve…
- CVE-2021-36121HIGHCVSS 8.8EG 8.82021-07-13
An issue was discovered in Echo ShareCare 8.15.5. The file-upload feature in Access/DownloadFeed_Mnt/FileUpload_Upd.cfm is susceptible to an unrestricted upload vulnerability via the name1 parameter, when processing remote input from an au…
- CVE-2021-36356CRITICALCVSS 9.8EG 9.82021-08-31
KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames (even though browseSystemFiles.php is no longer reachable via the GUI…
- CVE-2021-36426HIGHCVSS 8.8EG 8.82023-02-03
File Upload vulnerability in phpwcms 1.9.25 allows remote attackers to run arbitrary code via crafted file upload to include/inc_lib/general.inc.php.
- CVE-2021-36440CRITICALCVSS 9.8EG 9.82021-09-08
Unrestricted File Upload in ShowDoc v2.9.5 allows remote attackers to execute arbitrary code via the 'file_url' parameter in the component AdminUpdateController.class.php'.
- CVE-2021-36461HIGHCVSS 8.8EG 8.82022-07-15
An Arbitrary File Upload vulnerability exists in Microweber 1.1.3 that allows attackers to getshell via the Settings Upload Picture section by uploading pictures with malicious code, user.ini.
- CVE-2021-36547CRITICALCVSS 9.8EG 9.82021-10-28
A remote code execution (RCE) vulnerability in the component /codebase/dir.php?type=filenew of Mara v7.5 allows attackers to execute arbitrary commands via a crafted PHP file.
- CVE-2021-36548CRITICALCVSS 9.8EG 9.82021-10-28
A remote code execution (RCE) vulnerability in the component /admin/index.php?id=themes&action=edit_template&filename=blog of Monstra v3.0.4 allows attackers to execute arbitrary commands via a crafted PHP file.
- CVE-2021-36573MEDIUMCVSS 5.4EG 5.42022-12-15
File Upload vulnerability in Feehi CMS thru 2.1.1 allows attackers to run arbitrary code via crafted image upload.
- CVE-2021-36581CRITICALCVSS 9.8EG 9.82021-09-14
Kooboo CMS 2.1.1.0 is vulnerable to Insecure file upload. It is possible to upload any file extension to the server. The server does not verify the extension of the file and the tester was able to upload an aspx to the server.
- CVE-2021-36582CRITICALCVSS 9.8EG 9.82021-09-14
In Kooboo CMS 2.1.1.0, it is possible to upload a remote shell (e.g., aspx) to the server and then call upon it to receive a reverse shell from the victim server. The files are uploaded to /Content/Template/root/reverse-shell.aspx and can …
- CVE-2021-36622CRITICALCVSS 9.8EG 9.82021-08-03
Sourcecodester Online Covid Vaccination Scheduler System 1.0 is affected vulnerable to Arbitrary File Upload. The admin panel has an upload function of profile photo accessible at http://localhost/scheduler/admin/?page=user. An attacker co…
- CVE-2021-36623CRITICALCVSS 9.8EG 9.82021-08-03
Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE.
- CVE-2021-36711CRITICALCVSS 9.8EG 9.82022-07-16
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled.
- CVE-2021-36719HIGHCVSS 8.8EG 8.82021-12-08
PineApp - Mail Secure - The attacker must be logged in as a user to the Pineapp system. The attacker exploits the vulnerable nicUpload.php file to upload a malicious file,Thus taking over the server and running remote code.
- CVE-2021-36741HIGHCVSS 8.8EG 9.0⚠ KEV2021-07-29
An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG, and Worry-Free Business Security 10.0 SP1 allows a remote attached to upload arbitrary files on affected installations. Please note: …
- CVE-2021-37105HIGHCVSS 7.5EG 7.52021-09-28
There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0. Due to the improper verification of file to be uploaded and does not strictly restrict the file access path, attackers may upload malicious fil…
- CVE-2021-37194HIGHCVSS 7.5EG 7.52022-02-09
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.4 (All versions < V10.4.1 only if web components are used)…
- CVE-2021-37221HIGHCVSS 8.8EG 8.82021-10-27
A file upload vulnerability exists in Sourcecodester Customer Relationship Management System 1.0 via the account update option & customer create option, which could let a remote malicious user upload an arbitrary php file. .
- CVE-2021-37372HIGHCVSS 8.8EG 8.82021-10-26
Online Student Admission System 1.0 is affected by an insecure file upload vulnerability. A low privileged user can upload malicious PHP files by updating their profile image to gain remote code execution.
- CVE-2021-37444HIGHCVSS 8.8EG 8.82021-07-25
NCH IVM Attendant v5.12 and earlier suffers from a directory traversal weakness upon uploading plugins in a ZIP archive. This can lead to code execution if a ZIP element's pathname is set to a Windows startup folder, a file for the inbuilt…
- CVE-2021-3745MEDIUMCVSS 6.6EG 6.62021-10-28
flatcore-cms is vulnerable to Unrestricted Upload of File with Dangerous Type
- CVE-2021-37539CRITICALCVSS 9.8EG 9.82021-09-27
Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestricted file which leads to Remote code execution.
- CVE-2021-37608CRITICALCVSS 9.8EG 9.82021-08-18
Unrestricted Upload of File with Dangerous Type vulnerability in Apache OFBiz allows an attacker to execute remote commands. This issue affects Apache OFBiz version 17.12.07 and prior versions. Upgrade to at least 17.12.08 or apply patches…
- CVE-2021-37741HIGHCVSS 8.8EG 8.82021-09-21
ManageEngine ADManager Plus before 7111 has Pre-authentication RCE vulnerabilities.
- CVE-2021-37761CRITICALCVSS 9.8EG 9.82021-09-27
Zoho ManageEngine ADManager Plus version 7110 and prior is vulnerable to unrestricted file upload, leading to remote code execution.
- CVE-2021-37762CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file overwrite leading to remote code execution.
- CVE-2021-37770HIGHCVSS 7.2EG 7.22022-06-30
Nucleus CMS v3.71 is affected by a file upload vulnerability. In this vulnerability, we can use upload to change the upload path to the path without the Htaccess file. Upload an Htaccess file and write it to AddType application / x-httpd-p…
- CVE-2021-37918CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-37919CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-37920CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-37921CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-37923CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-37924CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-37926CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
Map vulnerabilities like CWE-434 to your infrastructure
EchelonGraph correlates every CVE — across CWE-434 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →