CWE-434— Unrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.— MITRE CWE catalog
4,083 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-434page 69 of 82
- CVE-2025-41735HIGHCVSS 8.8EG 8.82025-11-18
A low privileged remote attacker can upload any file to an arbitrary location due to missing file check resulting in remote code execution.
- CVE-2025-4258MEDIUMCVSS 6.3EG 6.32025-05-05
A vulnerability, which was classified as critical, was found in zhangyanbo2007 youkefu up to 4.2.0. Affected is the function Upload of the file \youkefu-master\src\main\java\com\ukefu\webim\web\handler\resource\MediaController.java. The ma…
- CVE-2025-4259MEDIUMCVSS 6.3EG 6.32025-05-05
A vulnerability has been found in newbee-mall 1.0 and classified as critical. Affected by this vulnerability is the function Upload of the file ltd/newbee/mall/controller/common/UploadController.java. The manipulation of the argument File …
- CVE-2025-4279HIGHCVSS 8.8EG 8.82025-05-05
The External image replace plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'external_image_replace_get_posts::replace_post' function in all versions up to, and including, 1.0.8. This …
- CVE-2025-42883LOWCVSS 2.7EG 2.72025-11-11
Migration Workbench (DX Workbench) in SAP NetWeaver Application Server for ABAP fails to trigger a malware scan when an attacker with administrative privileges uploads files to the application server. An attacker could leverage this and up…
- CVE-2025-4291MEDIUMCVSS 6.3EG 6.32025-05-05
A vulnerability, which was classified as critical, was found in IdeaCMS up to 1.6. Affected is the function saveUpload. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been discl…
- CVE-2025-42910CRITICALCVSS 9.0EG 9.02025-10-14
Due to missing verification of file type or content, SAP Supplier Relationship Management allows an authenticated attacker to upload arbitrary files. These files could include executables which might be downloaded and executed by the user …
- CVE-2025-4305MEDIUMCVSS 6.3EG 6.32025-05-06
A vulnerability has been found in kefaming mayi up to 1.3.9 and classified as critical. This vulnerability affects the function Upload of the file app/tools/controller/File.php. The manipulation of the argument File leads to unrestricted u…
- CVE-2025-4310MEDIUMCVSS 4.7EG 4.72025-05-06
A vulnerability classified as critical has been found in itsourcecode Content Management System 1.0. This affects an unknown part of the file /admin/add_topic.php?category=BBS. The manipulation of the argument Cover Image leads to unrestri…
- CVE-2025-4317HIGHCVSS 8.8EG 8.82025-05-13
The TheGem theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the thegem_get_logo_url() function in all versions up to, and including, 5.10.3. This makes it possible for authenticated attacke…
- CVE-2025-4333MEDIUMCVSS 6.3EG 6.32025-05-06
A vulnerability was found in feng_ha_ha/megagao ssm-erp and production_ssm up to 0.0.1. It has been classified as critical. This affects the function uploadFile of the file src/main/java/com/megagao/production/ssm/service/impl/FileServiceI…
- CVE-2025-4336HIGHCVSS 8.1EG 8.12025-05-24
The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_file() function in all versions up to, and including, 1.2.5. This makes it possible for…
- CVE-2025-43750MEDIUMCVSS 6.5EG 6.52025-08-20
Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.1, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allows …
- CVE-2025-43766CRITICALCVSS 9.8EG 9.82025-08-23
The Liferay Portal 7.4.0 through 7.3.3.131, and Liferay DXP 2024.Q4.0, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.12 and 7.4 GA through update 92 allows the upload of unrestricted files in the sty…
- CVE-2025-4387HIGHCVSS 8.8EG 8.82025-06-10
The Abandoned Cart Pro for WooCommerce plugin contains an authenticated arbitrary file upload vulnerability due to missing file type validation in the wcap_add_to_cart_popup_upload_files function in all versions up to, and including, 9.16.…
- CVE-2025-4389CRITICALCVSS 9.8EG 9.82025-05-17
The Crawlomatic Multipage Scraper Post Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the crawlomatic_generate_featured_image() function in all versions up to, and including, 2…
- CVE-2025-4391CRITICALCVSS 9.8EG 9.82025-05-17
The Echo RSS Feed Post Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the echo_generate_featured_image() function in all versions up to, and including, 5.4.8.1. This makes it p…
- CVE-2025-43946CRITICALCVSS 9.8EG 9.82025-04-22
TCPWave DDI 11.34P1C2 allows Remote Code Execution via Unrestricted File Upload (combined with Path Traversal).
- CVE-2025-4403CRITICALCVSS 9.8EG 9.82025-05-09
The Drag and Drop Multiple File Upload for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 1.1.6 due to accepting a user‐supplied supported_type string and the uploaded filen…
- CVE-2025-4413HIGHCVSS 8.8EG 8.82025-06-18
The Pixabay Images plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the pixabay_upload function in all versions up to, and including, 3.4. This makes it possible for authenticated attacker…
- CVE-2025-44139HIGHCVSS 7.2EG 7.22025-08-01
Emlog Pro V2.5.7 is vulnerable to Unrestricted Upload of File with Dangerous Type via /emlog/admin/plugin.php?action=upload_zip
- CVE-2025-44658CRITICALCVSS 9.8EG 9.82025-07-21
In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability is caused by not following the specification to only limit FPM to .php extensions. An attacker may exploit this by uploading malicious scripts disguised with alternate e…
- CVE-2025-4468HIGHCVSS 7.3EG 7.32025-05-09
A vulnerability was found in SourceCodester Online Student Clearance System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit-photo.php. The manipulation of the argument userImage leads to unr…
- CVE-2025-4538MEDIUMCVSS 6.3EG 6.32025-05-11
A vulnerability was found in kkFileView 4.4.0. It has been classified as critical. This affects an unknown part of the file /fileUpload. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the att…
- CVE-2025-4556CRITICALCVSS 9.8EG 9.82025-05-12
The web management interface of Okcat Parking Management Platform from ZONG YU has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code…
- CVE-2025-45586HIGHCVSS 7.5EG 7.52025-09-12
An issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite files via supplying a crafted PUT request.
- CVE-2025-4561HIGHCVSS 8.8EG 8.82025-05-12
The KFOX from KingFor has an Arbitrary File Upload vulnerability, allowing remote attackers with regular privilege to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
- CVE-2025-45854CRITICALCVSS 10.0EG 9.82025-06-03
/server/executeExec of JEHC-BPM 2.0.1 allows attackers to execute arbitrary code via execParams.
- CVE-2025-45855MEDIUMCVSS 5.4EG 5.42025-06-03
An arbitrary file upload vulnerability in the component /upload/GoodsCategory/image of erupt v1.12.19 allows attackers to execute arbitrary code via uploading a crafted file.
- CVE-2025-45997HIGHCVSS 8.6EG 8.62025-05-28
Sourcecodester Web-based Pharmacy Product Management System v.1.0 has a file upload vulnerability. An attacker can upload a PHP file disguised as an image by modifying the Content-Type header to image/jpg.
- CVE-2025-46001CRITICALCVSS 9.8EG 9.82025-07-18
An arbitrary file upload vulnerability in the is_allowed_file_type() function of Filemanager v2.3.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
- CVE-2025-46068HIGHCVSS 8.8EG 8.82026-01-12
An issue in Automai Director v.25.2.0 allows a remote attacker to execute arbitrary code via the update mechanism
- CVE-2025-46078MEDIUMCVSS 5.3EG 5.32025-05-29
HuoCMS V3.5.1 and before is vulnerable to file upload, which allows attackers to take control of the target server
- CVE-2025-46080MEDIUMCVSS 5.3EG 5.32025-05-29
HuoCMS V3.5.1 has a File Upload Vulnerability. An attacker can exploit this flaw to bypass whitelist restrictions and craft malicious files with specific suffixes, thereby gaining control of the server.
- CVE-2025-46099HIGHCVSS 7.2EG 7.12025-07-23
In Pluck CMS 4.7.20-dev, an authenticated attacker can upload or create a crafted PHP file under the albums module directory and access it via the module routing logic in albums.site.php, resulting in arbitrary command execution through a …
- CVE-2025-46157CRITICALCVSS 9.9EG 9.92025-06-18
An issue in EfroTech Time Trax v.1.0 allows a remote attacker to execute arbitrary code via the file attachment function in the leave request form
- CVE-2025-46193CRITICALCVSS 9.8EG 9.82025-05-09
SourceCodester Client Database Management System 1.0 is vulnerable to Remote code execution via Arbitrary file upload in user_proposal_update_order.php.
- CVE-2025-46264CRITICALCVSS 9.9EG 9.92025-04-24
Unrestricted Upload of File with Dangerous Type vulnerability in blubrry PowerPress Podcasting powerpress allows Upload a Web Shell to a Web Server.This issue affects PowerPress Podcasting: from n/a through <= 11.12.5.
- CVE-2025-46384HIGHCVSS 8.8EG 8.82025-07-20
CWE-434 Unrestricted Upload of File with Dangerous Type
- CVE-2025-4648HIGHCVSS 8.4EG 8.42025-05-13
The content of a SVG file, received as input in Centreon web, was not properly checked. Allows Reflected XSS. A user with elevated privileges can inject JS script by altering the content of a SVG media, during the submit request. This is…
- CVE-2025-46490CRITICALCVSS 9.9EG 9.92025-05-23
Unrestricted Upload of File with Dangerous Type vulnerability in wordwebsoftware Crossword Compiler Puzzles crossword-compiler-puzzles allows Upload a Web Shell to a Web Server.This issue affects Crossword Compiler Puzzles: from n/a throug…
- CVE-2025-46612HIGHCVSS 7.2EG 7.22025-06-10
The Panel Designer dashboard in Airleader Master and Easy before 6.36 allows remote attackers to execute arbitrary commands via a wizard/workspace.jsp unrestricted file upload. To exploit this, the attacker must login to the administrator …
- CVE-2025-46616CRITICALCVSS 9.9EG 9.92025-04-25
Quantum StorNext Web GUI API before 7.2.4 allows potential Arbitrary Remote Code Execution (RCE) via upload of a file. This affects StorNext RYO before 7.2.4, StorNext Xcellis Workflow Director before 7.2.4, and ActiveScale Cold Storage.
- CVE-2025-47187HIGHCVSS 7.5EG 7.52025-07-23
A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones through 6.4 SP4 (R6.4.0.4006), and the 6970 Conference Unit through 6.4 SP4 (R6.4.0.4006) or version V1 R0.1.0, could allow an unauthenticated attacker to p…
- CVE-2025-4735MEDIUMCVSS 6.3EG 6.32025-05-16
A vulnerability has been found in Campcodes Sales and Inventory System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /pages/product.php. The manipulation of the argument Picture lead…
- CVE-2025-47452CRITICALCVSS 9.9EG 9.92025-06-17
Unrestricted Upload of File with Dangerous Type vulnerability in RexTheme WP VR wpvr allows Upload a Web Shell to a Web Server.This issue affects WP VR: from n/a through <= 8.5.26.
- CVE-2025-47549CRITICALCVSS 9.1EG 9.12025-05-07
Unrestricted Upload of File with Dangerous Type vulnerability in Themefic BEAF beaf-before-and-after-gallery allows Upload a Web Shell to a Web Server.This issue affects BEAF: from n/a through <= 4.6.10.
- CVE-2025-47550MEDIUMCVSS 6.6EG 6.62025-05-07
Unrestricted Upload of File with Dangerous Type vulnerability in Themefic Instantio instantio allows Upload a Web Shell to a Web Server.This issue affects Instantio: from n/a through <= 3.3.16.
- CVE-2025-47559CRITICALCVSS 9.9EG 9.92025-06-17
Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG mapsvg allows Upload a Web Shell to a Web Server.This issue affects MapSVG: from n/a through < 8.7.4.
- CVE-2025-47577CRITICALCVSS 10.0EG 10.02025-05-19
Unrestricted Upload of File with Dangerous Type vulnerability in templateinvaders TI WooCommerce Wishlist ti-woocommerce-wishlist allows Upload a Web Shell to a Web Server.This issue affects TI WooCommerce Wishlist: from n/a through <= 2.9…
Map vulnerabilities like CWE-434 to your infrastructure
EchelonGraph correlates every CVE — across CWE-434 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →