CWE-434— Unrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.— MITRE CWE catalog
4,074 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-434page 30 of 82
- CVE-2022-3537HIGHCVSS 8.8EG 8.82022-11-07
The Role Based Pricing for WooCommerce WordPress plugin before 1.6.2 does not have authorisation and proper CSRF checks, and does not validate files to be uploaded, allowing any authenticated users like subscriber to upload arbitrary files…
- CVE-2022-35426CRITICALCVSS 9.8EG 9.82022-08-10
UCMS 1.6 is vulnerable to arbitrary file upload via ucms/sadmin/file PHP file.
- CVE-2022-3549MEDIUMCVSS 4.7EG 7.22022-10-17
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /csms/admin/?page=user/manage_user of the component Avatar Hand…
- CVE-2022-3552HIGHCVSS 7.2EG 7.22022-10-17
Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.
- CVE-2022-3575CRITICALCVSS 9.8EG 9.82022-11-02
Frauscher Sensortechnik GmbH FDS102 for FAdC R2 and FAdCi R2 v2.8.0 to v2.9.1 are vulnerable to malicious code upload without authentication by using the configuration upload function. This could lead to a complete compromise of the FDS102…
- CVE-2022-36066CRITICALCVSS 9.1EG 9.12022-09-29
Discourse is an open source discussion platform. In versions prior to 2.8.9 on the `stable` branch and prior to 2.9.0.beta10 on the `beta` and `tests-passed` branches, admins can upload a maliciously crafted Zip or Gzip Tar archive to writ…
- CVE-2022-36264CRITICALCVSS 9.1EG 9.12022-08-08
In Airspan AirSpot 5410 version 0.3.4.1-4 and under there exists an Unauthenticated remote Arbitrary File Upload vulnerability which allows overwriting arbitrary files. A malicious actor can remotely upload a file of their choice and overw…
- CVE-2022-36285HIGHCVSS 7.2EG 7.22022-08-23
Authenticated Arbitrary File Upload vulnerability in dmitrylitvinov Uploading SVG, WEBP and ICO files plugin <= 1.0.1 at WordPress.
- CVE-2022-36386CRITICALCVSS 9.1EG 7.22022-09-21
Authenticated Arbitrary Code Execution vulnerability in Soflyy Import any XML or CSV File to WordPress plugin <= 3.6.7 at WordPress.
- CVE-2022-36431CRITICALCVSS 9.8EG 9.82022-12-01
An arbitrary file upload vulnerability in Rocket TRUfusion Enterprise before 7.9.6.1 allows unauthenticated attackers to execute arbitrary code via a crafted JSP file. Issue fixed in version 7.9.6.1.
- CVE-2022-36452CRITICALCVSS 9.8EG 9.82022-10-25
A vulnerability in the web conferencing component of Mitel MiCollab through 9.5.0.101 could allow an unauthenticated attacker to upload malicious files. A successful exploit could allow an attacker to execute arbitrary code within the cont…
- CVE-2022-36557CRITICALCVSS 9.8EG 9.82022-08-29
Seiko SkyBridge MB-A100/A110 v4.2.0 and below was discovered to contain an arbitrary file upload vulnerability via the restore backup function. This vulnerability allows attackers to execute arbitrary code via a crafted html file.
- CVE-2022-36580HIGHCVSS 7.2EG 7.22022-08-31
An arbitrary file upload vulnerability in the component /admin/products/controller.php?action=add of Online Ordering System v2.3.2 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-36582HIGHCVSS 7.2EG 7.22022-08-31
An arbitrary file upload vulnerability in the component /php_action/createProduct.php of Garage Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-36667HIGHCVSS 8.8EG 8.82022-09-14
Garage Management System 1.0 is vulnerable to the Remote Code Execution (RCE) due to the lack of filtering from the file upload function. The vulnerability exist during adding parts and from the upload function, the attacker can upload PHP…
- CVE-2022-36769HIGHCVSS 7.2EG 7.22023-04-26
IBM Cloud Pak for Data 4.5 and 4.6 could allow a privileged user to upload malicious files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 232034.
- CVE-2022-3682CRITICALCVSS 9.9EG 8.82023-03-28
A vulnerability exists in the SDM600 file permission validation. An attacker could exploit the vulnerability by gaining access to the system and uploading a specially crafted message to the system node, which could result in Arbitrary cod…
- CVE-2022-37140HIGHCVSS 8.0EG 8.02022-09-14
PayMoney 3.3 is vulnerable to Client Side Remote Code Execution (RCE). The vulnerability exists on the reply ticket function and upload the malicious file. A calculator will open when the victim who download the file open the RTF file.
- CVE-2022-37159CRITICALCVSS 9.8EG 9.82022-08-25
Claroline 13.5.7 and prior is vulnerable to Remote code execution via arbitrary file upload.
- CVE-2022-37181CRITICALCVSS 9.8EG 9.82022-08-24
72crm 9.0 has an Arbitrary file upload vulnerability.
- CVE-2022-37184HIGHCVSS 8.8EG 8.82022-08-31
The application manage_website.php on Garage Management System 1.0 is vulnerable to Shell File Upload. The already authenticated malicious user, can upload a dangerous RCE or LCE exploit file.
- CVE-2022-37346CRITICALCVSS 9.8EG 9.82022-09-27
EC-CUBE plugin 'Product Image Bulk Upload Plugin' 1.0.0 and 4.1.0 contains an insufficient verification vulnerability when uploading files. Exploiting this vulnerability allows a remote unauthenticated attacker to upload arbitrary files ot…
- CVE-2022-37426MEDIUMCVSS 4.3EG 7.52022-10-28
Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Injection.
- CVE-2022-3771MEDIUMCVSS 6.3EG 9.82022-10-31
A vulnerability, which was classified as critical, has been found in easyii CMS. This issue affects the function file of the file helpers/Upload.php of the component File Upload Management. The manipulation leads to unrestricted upload. Th…
- CVE-2022-38140HIGHCVSS 7.6EG 8.82022-11-28
Auth. (contributor+) Arbitrary File Upload in SEO Plugin by Squirrly SEO plugin <= 12.1.10 on WordPress.
- CVE-2022-38296CRITICALCVSS 9.8EG 9.82022-09-12
Cuppa CMS v1.0 was discovered to contain an arbitrary file upload vulnerability via the File Manager.
- CVE-2022-38305HIGHCVSS 8.8EG 8.82022-09-13
AeroCMS v0.0.1 was discovered to contain an arbitrary file upload vulnerability via the component /admin/profile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-38323HIGHCVSS 7.2EG 7.22022-09-15
Event Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /Royal_Event/update_image.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-38843HIGHCVSS 8.8EG 8.82022-09-16
EspoCRM version 7.1.8 is vulnerable to Unrestricted File Upload allowing attackers to upload malicious file with any extension to the server. Attacker may execute these malicious files to run unintended code on the server to compromise the…
- CVE-2022-38877HIGHCVSS 7.2EG 7.22022-09-16
Garage Management System v1.0 is vulnerable to Arbitrary code execution via ip/garage/php_action/editProductImage.php?id=1.
- CVE-2022-38881CRITICALCVSS 9.8EG 9.82022-09-19
The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0.
- CVE-2022-38882CRITICALCVSS 9.8EG 9.82022-09-19
The d8s-json for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0.
- CVE-2022-38883CRITICALCVSS 9.8EG 9.82022-09-19
The d8s-math for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0.
- CVE-2022-38884CRITICALCVSS 9.8EG 9.82022-09-19
The d8s-grammars for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0.
- CVE-2022-38885CRITICALCVSS 9.8EG 9.82022-09-19
The d8s-netstrings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0.
- CVE-2022-38886CRITICALCVSS 9.8EG 9.82022-09-19
The d8s-xml for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0.
- CVE-2022-38887CRITICALCVSS 9.8EG 9.82022-09-19
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The democritus-strings package. The affected version is 0.1.0.
- CVE-2022-38916CRITICALCVSS 9.8EG 9.82022-09-20
A file upload vulnerability exists in the storage feature of pagekit 1.0.18, which allows an attacker to upload malicious files
- CVE-2022-39019MEDIUMCVSS 6.3EG 7.52022-10-31
Broken access controls on PDFtron WebviewerUI in M-Files Hubshare before 3.3.11.3 allows unauthenticated attackers to upload malicious files to the application server.
- CVE-2022-39036CRITICALCVSS 9.8EG 9.82022-11-10
The file upload function of Agentflow BPM has insufficient filtering for special characters in URLs. An unauthenticated remote attacker can exploit this vulnerability to upload arbitrary file and execute arbitrary code to manipulate system…
- CVE-2022-3912HIGHCVSS 7.5EG 7.52022-12-12
The User Registration WordPress plugin before 2.2.4.1 does not properly restrict the files to be uploaded via an AJAX action available to both unauthenticated and authenticated users, which could allow unauthenticated users to upload PHP f…
- CVE-2022-3921CRITICALCVSS 9.8EG 9.82022-12-12
The Listingo WordPress theme before 3.2.7 does not validate files to be uploaded via an AJAX action available to unauthenticated users, which could allow them to upload arbitrary files and lead to RCE
- CVE-2022-39301HIGHCVSS 8.2EG 8.22022-10-19
sra-admin is a background rights management system that separates the front and back end. sra-admin version 1.1.1 has a storage cross-site scripting (XSS) vulnerability. After logging into the sra-admin background, an attacker can upload a…
- CVE-2022-39305CRITICALCVSS 9.8EG 9.82022-10-24
Gin-vue-admin is a backstage management system based on vue and gin, which separates the front and rear of the full stack. Versions prior to 2.5.4 contain a file upload ability. The affected code fails to validate fileMd5 and fileName para…
- CVE-2022-3944MEDIUMCVSS 6.3EG 8.82022-11-11
A vulnerability was found in jerryhanjj ERP. It has been declared as critical. Affected by this vulnerability is the function uploadImages of the file application/controllers/basedata/inventory.php of the component Commodity Management. Th…
- CVE-2022-3982CRITICALCVSS 9.8EG 9.82022-12-12
The Booking calendar, Appointment Booking System WordPress plugin before 3.2.2 does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE
- CVE-2022-3989HIGHCVSS 8.8EG 8.82022-12-12
The Motors WordPress plugin before 1.4.4 does not properly validate uploaded files for dangerous file types (such as .php) in an AJAX action, allowing an attacker to sign up on a victim's WordPress instance, upload a malicious PHP file and…
- CVE-2022-39977HIGHCVSS 7.2EG 7.22022-10-27
Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the User module. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file uploaded through…
- CVE-2022-39978HIGHCVSS 7.2EG 7.22022-10-27
Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the Product List module. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file uploaded…
- CVE-2022-39983CRITICALCVSS 9.8EG 9.82023-02-22
File upload vulnerability in Pro Gamma Instant Developer RD3 22.5 r23, r30, and possibly earlier versions, allows attackers to execute arbitrary code.
Map vulnerabilities like CWE-434 to your infrastructure
EchelonGraph correlates every CVE — across CWE-434 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →