CWE-434— Unrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.— MITRE CWE catalog
4,072 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-434page 22 of 82
- CVE-2021-37928CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-37929CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-37930CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-37931CRITICALCVSS 9.8EG 9.82021-10-07
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
- CVE-2021-38163CRITICALCVSS 9.9EG 9.9⚠ KEV2021-09-14
SAP NetWeaver (Visual Composer 7.0 RT) versions - 7.30, 7.31, 7.40, 7.50, without restriction, an attacker authenticated as a non-administrative user can upload a malicious file over a network and trigger its processing, which is capable o…
- CVE-2021-38305HIGHCVSS 7.8EG 7.82021-08-09
23andMe Yamale before 3.0.8 allows remote attackers to execute arbitrary code via a crafted schema file. The schema parser uses eval as part of its processing, and tries to protect from malicious expressions by limiting the builtins that a…
- CVE-2021-3832CRITICALCVSS 9.8EG 9.82021-10-07
Integria IMS in its 5.0.92 version is vulnerable to a Remote Code Execution attack through file uploading. An unauthenticated attacker could abuse the AsyncUpload() function in order to exploit the vulnerability.
- CVE-2021-38346HIGHCVSS 8.8EG 8.82021-10-14
The Brizy Page Builder plugin <= 2.3.11 for WordPress allowed authenticated users to upload executable files to a location of their choice using the brizy_create_block_screenshot AJAX action. The file would be named using the id parameter,…
- CVE-2021-38366HIGHCVSS 8.8EG 8.82021-08-12
Sitecore through 10.1, when Update Center is enabled, allows remote authenticated users to upload arbitrary files and achieve remote code execution by visiting an uploaded .aspx file at an admin/Packages URL.
- CVE-2021-38397CRITICALCVSS 10.0EG 10.02022-10-28
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file uploads, which may allow an attacker to remotely execute arbitrary code and cause a denial-of-service condition.
- CVE-2021-3846HIGHCVSS 8.8EG 8.82021-10-19
firefly-iii is vulnerable to Unrestricted Upload of File with Dangerous Type
- CVE-2021-38471CRITICALCVSS 9.1EG 9.12021-10-22
There are multiple API function codes that permit data writing to any file, which may allow an attacker to modify existing files or create new files.
- CVE-2021-38484CRITICALCVSS 9.1EG 9.12021-10-19
InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 do not have a filter or signature check to detect or prevent an upload of malicious files to the server, which may allow an attacker, acting as an administrator, to upload…
- CVE-2021-38613CRITICALCVSS 9.8EG 9.82021-08-24
The assets/index.php Image Upload feature of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to upload any code to the target system and achieve remote code execution.
- CVE-2021-38697CRITICALCVSS 9.8EG 9.82022-01-18
SoftVibe SARABAN for INFOMA 1.1 allows Unauthenticated unrestricted File Upload, that allows attackers to upload files with any file extension which can lead to arbitrary code execution.
- CVE-2021-38753CRITICALCVSS 9.8EG 9.82021-08-16
An unrestricted file upload on Simple Image Gallery Web App can be exploited to upload a web shell and executed to gain unauthorized access to the server hosting the web app.
- CVE-2021-38841HIGHCVSS 8.8EG 8.82021-09-07
Remote Code Execution can occur in Simple Water Refilling Station Management System 1.0 via the System Logo option on the system_info page in classes/SystemSettings.php with an update_settings action.
- CVE-2021-38847HIGHCVSS 8.8EG 8.82021-11-01
S-Cart v6.4.1 and below was discovered to contain an arbitrary file upload vulnerability in the Editor module on the Admin panel. This vulnerability allows attackers to execute arbitrary code via a crafted IMG file.
- CVE-2021-38945CRITICALCVSS 9.8EG 9.82022-06-24
IBM Cognos Analytics 11.2.1, 11.2.0, and 11.1.7 could allow a remote attacker to upload arbitrary files, caused by improper content validation. IBM X-Force ID: 211238.
- CVE-2021-39017MEDIUMCVSS 6.5EG 6.52022-07-14
IBM Engineering Lifecycle Optimization - Publishing 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 could allow a remote attacker to upload arbitrary files, caused by improper access controls. IBM X-Force ID: 213725.
- CVE-2021-39040HIGHCVSS 8.0EG 8.02022-04-25
IBM Planning Analytics Workspace 2.0 could be vulnerable to malicious file upload by not validating the file types or sizes. Attackers can make use of this weakness and upload malicious executable files into the system and it can be sent t…
- CVE-2021-3906MEDIUMCVSS 6.5EG 6.52021-10-27
bookstack is vulnerable to Unrestricted Upload of File with Dangerous Type
- CVE-2021-39139HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-39141HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-39145HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-39146HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-39147HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-39148HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-39149HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-3915MEDIUMCVSS 5.7EG 5.72021-11-13
bookstack is vulnerable to Unrestricted Upload of File with Dangerous Type
- CVE-2021-39151HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-39153HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-39154HIGHCVSS 8.5EG 8.52021-08-23
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stre…
- CVE-2021-39221MEDIUMCVSS 6.4EG 6.42021-10-25
Nextcloud is an open-source, self-hosted productivity platform. The Nextcloud Contacts application prior to version 4.0.3 was vulnerable to a stored Cross-Site Scripting (XSS) vulnerability. For exploitation, a user would need to right-cli…
- CVE-2021-39222MEDIUMCVSS 6.4EG 6.42021-11-15
Nextcloud is an open-source, self-hosted productivity platform. The Nextcloud Talk application was vulnerable to a stored Cross-Site Scripting (XSS) vulnerability. For exploitation, a user would need to right-click on a malicious file and …
- CVE-2021-39317HIGHCVSS 8.8EG 8.82021-10-11
A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check in the plugin_offline_installer_callbac…
- CVE-2021-39352HIGHCVSS 7.2EG 7.22021-10-21
The Catch Themes Demo Import WordPress plugin is vulnerable to arbitrary file uploads via the import functionality found in the ~/inc/CatchThemesDemoImport.php file, in versions up to and including 1.7, due to insufficient file type valida…
- CVE-2021-39384CRITICALCVSS 9.8EG 9.82022-03-20
DWSurvey v3.2.0 was discovered to contain an arbitrary file write vulnerability via the component /utils/ToHtmlServlet.java.
- CVE-2021-39608HIGHCVSS 7.2EG 7.22021-08-23
Remote Code Execution (RCE) vulnerabilty exists in FlatCore-CMS 2.0.7 via the upload addon plugin, which could let a remote malicious user exeuct arbitrary php code.
- CVE-2021-40175CRITICALCVSS 9.8EG 9.82021-08-29
Zoho ManageEngine Log360 before Build 5219 allows unrestricted file upload with resultant remote code execution.
- CVE-2021-40188HIGHCVSS 7.2EG 7.22021-10-11
PHPFusion 9.03.110 is affected by an arbitrary file upload vulnerability. The File Manager function in admin panel does not filter all PHP extensions such as ".php, .php7, .phtml, .php5, ...". An attacker can upload a malicious file and ex…
- CVE-2021-40189HIGHCVSS 7.2EG 7.22021-10-11
PHPFusion 9.03.110 is affected by a remote code execution vulnerability. The theme function will extract a file to "webroot/themes/{Theme Folder], where an attacker can access and execute arbitrary code.
- CVE-2021-40324HIGHCVSS 7.5EG 7.52021-10-04
Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data.
- CVE-2021-40344HIGHCVSS 7.2EG 7.22021-10-26
An issue was discovered in Nagios XI 5.8.5. In the Custom Includes section of the Admin panel, an administrator can upload files with arbitrary extensions as long as the MIME type corresponds to an image. Therefore it is possible to upload…
- CVE-2021-40524HIGHCVSS 7.5EG 7.52021-09-05
In Pure-FTPd before 1.0.50, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occurs because a certain greater-than-zero t…
- CVE-2021-40531CRITICALCVSS 9.8EG 9.82021-09-06
Sketch before 75 allows library feeds to be used to bypass file quarantine. Files are automatically downloaded and opened, without the com.apple.quarantine extended attribute. This results in remote code execution, as demonstrated by Comma…
- CVE-2021-4080HIGHCVSS 8.8EG 8.82022-01-12
crater is vulnerable to Unrestricted Upload of File with Dangerous Type
- CVE-2021-40845HIGHCVSS 8.8EG 8.82021-09-15
The web part of Zenitel AlphaCom XE Audio Server through 11.2.3.10, called AlphaWeb XE, does not restrict file upload in the Custom Scripts section at php/index.php. Neither the content nor extension of the uploaded files is checked, allow…
- CVE-2021-40870CRITICALCVSS 9.8EG 9.8⚠ KEV2021-09-13
An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922. Unrestricted upload of a file with a dangerous type is possible, which allows an unauthenticated user to execute arbitrary code via directory traversal.
- CVE-2021-40883CRITICALCVSS 9.8EG 9.82021-12-14
A Remote Code Execution (RCE) vulnerability exists in emlog 5.3.1 via content/plugins.
Map vulnerabilities like CWE-434 to your infrastructure
EchelonGraph correlates every CVE — across CWE-434 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →