Fallos del tipo CWE-434

2814 resultados
CVE-2025-10398MEDIUMfcba_zzm ics-park Smart Park Management System FileUploadUtils.java unrestricted uploadEPSS 0.3%CVE-2025-11426MEDIUMprojectworlds Advanced Library Management System edit_book.php unrestricted uploadEPSS 0.3%CVE-2025-11078MEDIUMitsourcecode Open Source Job Portal controller.php unrestricted uploadEPSS 0.3%CVE-2025-52078MEDIUMFile upload vulnerability in Writebot AI Content Generator SaaS React Template thru 4.0.0, allowing remote attackers to gain escalated priviEPSS 0.3%CVE-2025-41347HIGHStored Cross-Site Scripting (XSS) in WinPlus by Informática del EsteEPSS 0.3%CVE-2025-62065CRITICALWordPress RTMKit plugin <= 1.6.5 - Arbitrary File Upload vulnerabilityEPSS 0.3%CVE-2025-11351MEDIUMcode-projects Online Hotel Reservation System editpicexec.php unrestricted uploadEPSS 0.3%CVE-2025-14885MEDIUMSourceCodester Client Database Management System Leads Generation user_leads.php unrestricted uploadEPSS 0.3%CVE-2025-11352MEDIUMcode-projects Online Hotel Reservation System addexec.php unrestricted uploadEPSS 0.3%CVE-2025-9841MEDIUMcode-projects Mobile Shop Management System AddNewProduct.php unrestricted uploadEPSS 0.3%CVE-2026-1152MEDIUMtechnical-laohu mpay QR Code Image unrestricted uploadEPSS 0.3%CVE-2025-11417MEDIUMCampcodes Advanced Online Voting Management System voters_add.php unrestricted uploadEPSS 0.3%CVE-2026-3800MEDIUMSourceCodester/janobe Resort Reservation System controller.php doInsert unrestricted uploadEPSS 0.3%CVE-2025-11353MEDIUMcode-projects Online Hotel Reservation System addgalleryexec.php unrestricted uploadEPSS 0.3%CVE-2025-8859MEDIUMcode-projects eBlog Site File Upload save-slider.php unrestricted uploadEPSS 0.3%CVE-2025-45586HIGHAn issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite files via supplying a crafted PUT request.EPSS 0.3%CVE-2026-22783CRITICALIris Allows Arbitrary File Deletion via Mass Assignment in Datastore File ManagementEPSS 0.3%CVE-2026-2146MEDIUMguchengwuyue yshopmall co.yixiang.utils.FileUtil updateAvatar unrestricted uploadEPSS 0.3%CVE-2025-30173MEDIUMAdmin Authorized File UploadEPSS 0.3%CVE-2025-30169MEDIUMAdmin Authorized File Upload and Execute PHPEPSS 0.3%