CWE-434— Unrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.— MITRE CWE catalog
4,077 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-434page 40 of 82
- CVE-2023-39115CRITICALCVSS 9.8EG 9.82023-08-16
install/aiz-uploader/upload in Campcodes Online Matrimonial Website System Script 3.3 allows XSS via a crafted SVG document.
- CVE-2023-39147HIGHCVSS 7.8EG 7.82023-08-01
An arbitrary file upload vulnerability in Uvdesk 1.1.3 allows attackers to execute arbitrary code via uploading a crafted image file.
- CVE-2023-39307HIGHCVSS 8.5EG 8.52024-03-26
Unrestricted Upload of File with Dangerous Type vulnerability in ThemeFusion Avada.This issue affects Avada: from n/a through 7.11.1.
- CVE-2023-39346HIGHCVSS 8.8EG 8.82023-08-04
LinuxASMCallGraph is software for drawing the call graph of the programming code. Linux ASMCallGraph before commit 20dba06bd1a3cf260612d4f21547c25002121cd5 allows attackers to cause a remote code execution on the server side via uploading …
- CVE-2023-39377HIGHCVSS 7.2EG 7.22023-09-27
SiberianCMS - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method
- CVE-2023-39424CRITICALCVSS 9.9EG 9.92023-09-07
A vulnerability in RDPngFileUpload.dll, as used in the IRM Next Generation booking system, allows a remote attacker to upload arbitrary content (such as a web shell component) to the SQL database and execute it with SYSTEM privileges. Th…
- CVE-2023-39462MEDIUMCVSS 6.5EG 6.52024-05-03
Triangle MicroWorks SCADA Data Gateway Workspace Unrestricted Upload Vulnerability. This vulnerability allows remote attackers to upload arbitrary files on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authenti…
- CVE-2023-39463HIGHCVSS 7.2EG 7.22024-05-03
Triangle MicroWorks SCADA Data Gateway Trusted Certification Unrestricted Upload of File Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Triangle MicroW…
- CVE-2023-39538HIGHCVSS 7.5EG 7.52023-12-06
AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a BMP Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity,…
- CVE-2023-39539HIGHCVSS 7.5EG 7.52023-12-06
AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity,…
- CVE-2023-39548HIGHCVSS 8.8EG 8.82023-11-17
CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X SingleServerSafe 5.1 and earlier, EXPRESSCLUSTER X SingleServerSafe 5.1 and earlier allows a attacker to log in to the product may execute an arbitrary comm…
- CVE-2023-39776CRITICALCVSS 9.8EG 9.82023-08-10
A File Upload vulnerability in PHPJabbers Ticket Support Script v3.2 allows attackers to execute arbitrary code via uploading a crafted file.
- CVE-2023-39933MEDIUMCVSS 4.3EG 4.32024-03-18
Insufficient verification vulnerability exists in Broadcast Mail CGI (pmc.exe) included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a user who can upload files through the product may execute …
- CVE-2023-39970CRITICALCVSS 9.8EG 9.82023-08-17
Unrestricted Upload of File with Dangerous Type vulnerability in AcyMailing component for Joomla. It allows remote code execution.
- CVE-2023-40050CRITICALCVSS 9.9EG 9.92023-10-31
Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution.
- CVE-2023-40051CRITICALCVSS 9.1EG 9.12024-01-18
This issue affects Progress Application Server (PAS) for OpenEdge in versions 11.7 prior to 11.7.18, 12.2 prior to 12.2.13, and innovation releases prior to 12.8.0. An attacker can formulate a request for a WEB transport that allows unint…
- CVE-2023-40183HIGHCVSS 7.5EG 7.52023-09-21
DataEase is an open source data visualization and analysis tool. Prior to version 1.18.11, DataEase has a vulnerability that allows an attacker to to obtain user cookies. The program only uses the `ImageIO.read()` method to determine wheth…
- CVE-2023-40204CRITICALCVSS 9.1EG 9.12023-12-20
Unrestricted Upload of File with Dangerous Type vulnerability in Premio Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager.This issue affects Folders – Unlimited Folders to Organize Media Library F…
- CVE-2023-40219HIGHCVSS 7.2EG 7.22023-09-27
Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with editor or higher privilege to upload an arbitrary file to an unauthorized directory.
- CVE-2023-40265HIGHCVSS 8.8EG 8.82024-02-08
An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows authenticated remote code execution via file upload.
- CVE-2023-40460HIGHCVSS 7.1EG 7.12023-12-04
The ACEManager component of ALEOS 4.16 and earlier does not validate uploaded file names and types, which could potentially allow an authenticated user to perform client-side script execution within ACEManager, altering …
- CVE-2023-40731MEDIUMCVSS 5.7EG 8.82023-09-12
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The affected application allows users to upload arbitrary file types. This could allow an attacker to upload malicious files, that could potentially lead to cod…
- CVE-2023-40784CRITICALCVSS 9.8EG 9.82023-09-12
DedeCMS 5.7.102 has a File Upload vulnerability via uploads/dede/module_make.php.
- CVE-2023-40825HIGHCVSS 7.2EG 7.22023-08-28
An issue in Perfree PerfreeBlog v.3.1.2 allows a remote attacker to execute arbitrary code via crafted plugin listed in admin/plugin/access/list.
- CVE-2023-4097HIGHCVSS 8.8EG 8.82023-10-03
The file upload functionality is not implemented correctly and allows uploading of any type of file. As a prerequisite, it is necessary for the attacker to log into the application with a valid username.
- CVE-2023-40980CRITICALCVSS 9.8EG 9.82023-09-01
File Upload vulnerability in DWSurvey DWSurvey-OSS v.3.2.0 and before allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file.
- CVE-2023-41009CRITICALCVSS 9.8EG 9.82023-09-05
File Upload vulnerability in adlered bolo-solo v.2.6 allows a remote attacker to execute arbitrary code via a crafted script to the authorization field in the header.
- CVE-2023-41108HIGHCVSS 8.8EG 8.82023-09-05
TEF portal 2023-07-17 is vulnerable to authenticated remote code execution.
- CVE-2023-4121CRITICALCVSS 9.8EG 6.32023-08-03
A vulnerability was found in Byzoro Smart S85F Management Platform up to 20230722. It has been classified as critical. Affected is an unknown function. The manipulation of the argument file_upload leads to unrestricted upload. It is possib…
- CVE-2023-4122HIGHCVSS 8.8EG 9.92023-12-07
Student Information System v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'photo' parameter of my-profile page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application.
- CVE-2023-41357HIGHCVSS 8.8EG 8.82023-11-03
Galaxy Software Services Corporation Vitals ESP is an online knowledge base management portal, it has insufficient filtering and validation during file upload. An authenticated remote attacker with general user privilege can exploit this v…
- CVE-2023-41505CRITICALCVSS 9.8EG 9.82024-03-13
An arbitrary file upload vulnerability in the Add Student's Profile Picture function of Student Enrollment In PHP v1.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
- CVE-2023-41506CRITICALCVSS 9.8EG 9.82024-02-27
An arbitrary file upload vulnerability in the Update/Edit Student's Profile Picture function of Student Enrollment In PHP v1.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
- CVE-2023-41564MEDIUMCVSS 6.1EG 6.12023-09-08
An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file.
- CVE-2023-4159HIGHCVSS 8.8EG 9.92023-08-04
Unrestricted Upload of File with Dangerous Type in GitHub repository omeka/omeka-s prior to 4.0.3.
- CVE-2023-41626MEDIUMCVSS 4.8EG 4.82023-09-15
Gradio v3.27.0 was discovered to contain an arbitrary file upload vulnerability via the /upload interface.
- CVE-2023-41631HIGHCVSS 8.8EG 8.82023-10-17
eSST Monitoring v2.147.1 was discovered to contain a remote code execution (RCE) vulnerability via the file upload function.
- CVE-2023-41637CRITICALCVSS 9.8EG 9.82023-08-31
An arbitrary file upload vulnerability in the Carica immagine function of GruppoSCAI RealGimm 1.1.37p38 allows attackers to execute arbitrary code via uploading a crafted HTML file.
- CVE-2023-41638HIGHCVSS 8.8EG 8.82023-08-31
An arbitrary file upload vulnerability in the Gestione Documentale module of GruppoSCAI RealGimm 1.1.37p38 allows attackers to execute arbitrary code via uploading a crafted file.
- CVE-2023-41725HIGHCVSS 7.8EG 7.82023-11-03
Ivanti Avalanche EnterpriseServer Service Unrestricted File Upload Local Privilege Escalation Vulnerability
- CVE-2023-41788HIGHCVSS 8.8EG 7.62023-11-23
Unrestricted Upload of File with Dangerous Type vulnerability in Pandora FMS on all allows Accessing Functionality Not Properly Constrained by ACLs. This vulnerability allows attackers to execute code via PHP file uploads. This issue affec…
- CVE-2023-41812HIGHCVSS 8.8EG 5.72023-11-23
Unrestricted Upload of File with Dangerous Type vulnerability in Pandora FMS on all allows Accessing Functionality Not Properly Constrained by ACLs. This vulnerability allowed PHP executable files to be uploaded through the file manager. T…
- CVE-2023-4186CRITICALCVSS 9.8EG 6.32023-08-06
A vulnerability was found in SourceCodester Pharmacy Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file manage_website.php. The manipulation leads to unrestricted…
- CVE-2023-41902HIGHCVSS 7.8EG 7.82023-09-20
An XPC misconfiguration vulnerability in CoreCode MacUpdater before 2.3.8, and 3.x before 3.1.2, allows attackers to escalate privileges by crafting malicious .pkg files.
- CVE-2023-41998CRITICALCVSS 9.8EG 9.82023-11-27
Arcserve UDP prior to 9.2 contained a vulnerability in the com.ca.arcflash.rps.webservice.RPSService4CPMImpl interface. A routine exists that allows an attacker to upload and execute arbitrary files.
- CVE-2023-42017CRITICALCVSS 9.8EG 8.02023-12-22
IBM Planning Analytics Local 2.0 could allow a remote attacker to upload arbitrary files, caused by the improper validation of file extensions. By sending a specially crafted HTTP request, a remote attacker could exploit this vulnerabilit…
- CVE-2023-42180HIGHCVSS 8.8EG 8.82023-09-14
An arbitrary file upload vulnerability in the /user/upload component of lenosp 1.0-1.2.0 allows attackers to execute html code via a crafted JPG file.
- CVE-2023-4220MEDIUMCVSS 6.1EG 9.02023-11-28
Unrestricted file upload in big file upload functionality in `/main/inc/lib/javascript/bigupload/inc/bigUpload.php` in Chamilo LMS <= v1.11.24 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remot…
- CVE-2023-4223HIGHCVSS 8.8EG 8.82023-11-28
Unrestricted file upload in `/main/inc/ajax/document.ajax.php` in Chamilo LMS <= v1.11.24 allows authenticated attackers with learner role to obtain remote code execution via uploading of PHP files.
- CVE-2023-4224HIGHCVSS 8.8EG 8.82023-11-28
Unrestricted file upload in `/main/inc/ajax/dropbox.ajax.php` in Chamilo LMS <= v1.11.24 allows authenticated attackers with learner role to obtain remote code execution via uploading of PHP files.
Map vulnerabilities like CWE-434 to your infrastructure
EchelonGraph correlates every CVE — across CWE-434 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →