Fallos del tipo CWE-434
2809 resultadosCVE-2024-25627LOWCross-Site Scripting (XSS) via File Upload in Alf.ioEPSS 0.4%CVE-2025-37175HIGHAuthenticated Arbitrary File Upload Vulnerability in AOS-10 or AOS-8 Web-Based Management InterfaceEPSS 0.4%CVE-2024-37179HIGHInsecure File Operations vulnerability in SAP BusinessObjects Business Intelligence Platform (Web Intelligence)EPSS 0.4%CVE-2025-27282CRITICALWordPress Theme File Duplicator Plugin <= 1.3 - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2025-26872CRITICALWordPress Eximius theme <= 2.2 - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2024-7342MEDIUMBaidu UEditor unrestricted uploadEPSS 0.4%CVE-2025-3042MEDIUMProject Worlds Online Time Table Generator updateprofile.php unrestricted uploadEPSS 0.4%CVE-2025-3041MEDIUMProject Worlds Online Time Table Generator updatestudent.php unrestricted uploadEPSS 0.4%CVE-2024-6730MEDIUMNanjing Xingyuantu Technology SparkShop uploadFile unrestricted uploadEPSS 0.4%CVE-2025-45997HIGHSourcecodester Web-based Pharmacy Product Management System v.1.0 has a file upload vulnerability. An attacker can upload a PHP file disguisEPSS 0.4%CVE-2025-10081MEDIUMSourceCodester Pet Management System profile.php unrestricted uploadEPSS 0.4%CVE-2024-47319HIGHWordPress Bit Form plugin <= 2.13.10 - Arbitrary File Upload vulnerabilityEPSS 0.4%CVE-2025-11470MEDIUMSourceCodester Hotel and Lodge Management System manage_website.php unrestricted uploadEPSS 0.4%CVE-2026-9067CRITICALSchema & Structured Data for WP & AMP < 1.60 - Unauthenticated Arbitrary Media UploadEPSS 0.4%CVE-2020-36973HIGHPDW File Browser 1.3 - Remote Code ExecutionEPSS 0.4%CVE-2025-5178MEDIUMRealce Tecnologia Queue Ticket Kiosk Image File ajax.php unrestricted uploadEPSS 0.4%CVE-2025-10424MEDIUM1000projects Online Student Project Report Submission and Evaluation System faculty_controller.php unrestricted uploadEPSS 0.4%CVE-2025-10600MEDIUMSourceCodester Online Exam Form Submission register.php unrestricted uploadEPSS 0.4%CVE-2025-10447MEDIUMCampcodes Online Job Finder System applicationform.php unrestricted uploadEPSS 0.4%CVE-2024-40551MEDIUMAn arbitrary file upload vulnerability in the component /admin/cmsTemplate/doUpload of PublicCMS v4.0.202302.e allows attackers to execute aEPSS 0.4%