CWE-434— Unrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.— MITRE CWE catalog
4,074 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-434page 32 of 82
- CVE-2022-42029HIGHCVSS 8.8EG 8.82022-10-17
Chamilo 1.11.16 is affected by an authenticated local file inclusion vulnerability which allows authenticated users with access to 'big file uploads' to copy/move files from anywhere in the file system into the web directory.
- CVE-2022-42034HIGHCVSS 8.8EG 8.82022-10-11
Wedding Planner v1.0 is vulnerable to arbitrary code execution via users_profile.php.
- CVE-2022-42036CRITICALCVSS 9.8EG 9.82022-10-11
The d8s-urls package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-csv package. The affected version is 0.1.0.
- CVE-2022-42037CRITICALCVSS 9.8EG 9.82022-10-11
The d8s-asns package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-csv package. The affected version is 0.1.0.
- CVE-2022-42038CRITICALCVSS 9.8EG 9.82022-10-11
The d8s-ip-addresses package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-csv package. The affected version is 0.1.0.
- CVE-2022-42039CRITICALCVSS 9.8EG 9.82022-10-11
The d8s-lists package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0.
- CVE-2022-42040CRITICALCVSS 9.8EG 9.82022-10-11
The d8s-algorithms package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-dicts package. The affected version is 0.1.0.
- CVE-2022-42041CRITICALCVSS 9.8EG 9.82022-10-11
The d8s-file-system package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hashes package. The affected version is 0.1.0.
- CVE-2022-42042CRITICALCVSS 9.8EG 9.82022-10-11
The d8s-networking package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hashes package. The affected version is 0.1.0.
- CVE-2022-42043CRITICALCVSS 9.8EG 9.82022-10-11
The d8s-xml package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-html package. The affected version is 0.1.0.
- CVE-2022-42044CRITICALCVSS 9.8EG 9.82022-10-11
The d8s-asns package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-html package. The affected version is 0.1.0.
- CVE-2022-42092HIGHCVSS 7.2EG 7.22022-10-07
Backdrop CMS 1.22.0 has Unrestricted File Upload vulnerability via 'themes' that allows attackers to Remote Code Execution. Note: Third parties dispute this and argue that advanced permissions are required.
- CVE-2022-42154CRITICALCVSS 9.8EG 9.82022-10-17
An arbitrary file upload vulnerability in the component /apiadmin/upload/attach of 74cmsSE v3.13.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-42189HIGHCVSS 7.2EG 7.22022-10-21
Emlog Pro 1.6.0 plugins upload suffers from a remote code execution (RCE) vulnerability.
- CVE-2022-42198HIGHCVSS 8.8EG 8.82022-10-20
In Simple Exam Reviewer Management System v1.0 the User List function suffers from insecure file upload.
- CVE-2022-42201HIGHCVSS 7.2EG 7.22022-10-20
Simple Exam Reviewer Management System v1.0 is vulnerable to Insecure file upload.
- CVE-2022-42229HIGHCVSS 8.8EG 8.82022-10-11
Wedding Planner v1.0 is vulnerable to Arbitrary code execution via package_edit.php.
- CVE-2022-42287MEDIUMCVSS 6.0EG 7.82023-01-13
NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can upload and download arbitrary files under certain circumstances, which may lead to denial of service, escalation of privileges, information disclosure an…
- CVE-2022-4232MEDIUMCVSS 4.7EG 9.82022-11-30
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the …
- CVE-2022-42443LOWCVSS 2.2EG 2.22024-02-17
An undisclosed issue in Trusteer iOS SDK for mobile versions prior to 5.7 and Trusteer Android SDK for mobile versions prior to 5.7 may allow uploading of files. IBM X-Force ID: 238535.
- CVE-2022-42449MEDIUMCVSS 4.6EG 4.62025-04-30
Unsafe default file type filter policy in HCL Domino Volt allows upload of .html file and execution of unsafe JavaScript in deployed applications
- CVE-2022-42698CRITICALCVSS 9.8EG 9.82022-11-18
Unauth. Arbitrary File Upload vulnerability in WordPress Api2Cart Bridge Connector plugin <= 1.1.0 on WordPress.
- CVE-2022-4272MEDIUMCVSS 6.3EG 9.82022-12-03
A vulnerability, which was classified as critical, has been found in FeMiner wms. Affected by this issue is some unknown functionality of the file /product/savenewproduct.php?flag=1. The manipulation of the argument upfile leads to unrestr…
- CVE-2022-4273HIGHCVSS 7.3EG 9.82022-12-03
A vulnerability, which was classified as critical, has been found in SourceCodester Human Resource Management System 1.0. This issue affects some unknown processing of the file /hrm/controller/employee.php of the component Content-Type Han…
- CVE-2022-4276MEDIUMCVSS 6.3EG 9.82022-12-03
A vulnerability was found in House Rental System and classified as critical. Affected by this issue is some unknown functionality of the file tenant-engine.php of the component POST Request Handler. The manipulation of the argument id_phot…
- CVE-2022-42925CRITICALCVSS 9.9EG 8.82022-10-31
There is a vulnerability on Forma LMS version 3.1.0 and earlier that could allow an authenticated attacker (with the role of student) to privilege escalate in order to upload a Zip file through the plugin upload component. The exploitation…
- CVE-2022-42971CRITICALCVSS 9.8EG 9.82023-02-01
A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when the attacker uploads a malicious JSP file. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 1…
- CVE-2022-43050HIGHCVSS 7.2EG 7.22022-11-07
Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability in the component update_profile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43061HIGHCVSS 7.2EG 7.22022-11-03
Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /operations/travellers.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP fil…
- CVE-2022-43074CRITICALCVSS 9.8EG 9.82022-11-10
AyaCMS v3.1.2 was discovered to contain an arbitrary file upload vulnerability via the component /admin/fst_upload.inc.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43083HIGHCVSS 7.2EG 7.22022-11-01
An arbitrary file upload vulnerability in admin-add-vehicle.php of Vehicle Booking System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43085HIGHCVSS 7.2EG 7.22022-11-01
An arbitrary file upload vulnerability in add_product.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43146HIGHCVSS 7.2EG 7.22022-11-14
An arbitrary file upload vulnerability in the image upload function of Canteen Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43192MEDIUMCVSS 6.7EG 6.72022-11-17
An arbitrary file upload vulnerability in the component /dede/file_manage_control.php of Dedecms v5.7.101 allows attackers to execute arbitrary code via a crafted PHP file. This vulnerability is related to an incomplete fix for CVE-2022-40…
- CVE-2022-43231HIGHCVSS 7.2EG 7.22022-10-28
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/manage_website.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43234CRITICALCVSS 9.8EG 9.82022-11-16
An arbitrary file upload vulnerability in the /attachments component of Hoosk v1.8 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43265CRITICALCVSS 9.8EG 9.82022-11-15
An arbitrary file upload vulnerability in the component /pages/save_user.php of Canteen Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43275HIGHCVSS 7.2EG 7.22022-10-28
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43277HIGHCVSS 7.2EG 7.22022-11-09
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via ip/youthappam/php_action/editFile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-4328CRITICALCVSS 9.8EG 9.82023-03-06
The WooCommerce Checkout Field Manager WordPress plugin before 18.0 does not validate files to be uploaded, which could allow unauthenticated attackers to upload arbitrary files such as PHP on the server
- CVE-2022-43283MEDIUMCVSS 5.5EG 5.52022-10-28
wasm2c v1.0.29 was discovered to contain an abort in CWriter::Write.
- CVE-2022-43303CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version…
- CVE-2022-43304CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version o…
- CVE-2022-43305CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-algorithms package. The affected ver…
- CVE-2022-43306HIGHCVSS 8.8EG 8.82022-11-07
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-dates package. The affected version o…
- CVE-2022-43436HIGHCVSS 8.8EG 8.82023-01-03
The File Upload function of EasyTest has insufficient filtering for special characters and file type. A remote attacker authenticated as a general user can upload and execute arbitrary files, to manipulate system or disrupt service.
- CVE-2022-4395CRITICALCVSS 9.8EG 9.82023-01-30
The Membership For WooCommerce WordPress plugin before 2.1.7 does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as malicious PHP code, and achieve RCE.
- CVE-2022-43979MEDIUMCVSS 5.9EG 9.82023-01-27
There is a Path Traversal that leads to a Local File Inclusion in Pandora FMS v764. A function is called to check that the parameter that the user has inserted does not contain malicious characteres, but this check is insufficient. An atta…
- CVE-2022-44036HIGHCVSS 7.2EG 7.22023-01-03
In b2evolution 7.2.5, if configured with admins_can_manipulate_sensitive_files, arbitrary file upload is allowed for admins, leading to command execution. NOTE: the vendor's position is that this is "very obviously a feature not an issue a…
- CVE-2022-44048CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version …
Map vulnerabilities like CWE-434 to your infrastructure
EchelonGraph correlates every CVE — across CWE-434 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →