Fallos del tipo CWE-434
2816 resultadosCVE-2025-14522MEDIUMbaowzh hfly upload_json.php unrestricted uploadEPSS 0.3%CVE-2026-9445MEDIUMSourceCodester Simple POS and Inventory System File Extension addproduct.php unrestricted uploadEPSS 0.3%CVE-2025-8450HIGHUnrestricted File Upload in FileCatalystEPSS 0.3%CVE-2025-33015HIGHMultiple Vulnerabilities in IBM Concert SoftwareEPSS 0.3%CVE-2025-55455LOWDooTask v1.0.51 was dicovered to contain an authenticated arbitrary download vulnerability via the component /msg/sendtext.EPSS 0.3%CVE-2026-32536CRITICALWordPress Green Downloads plugin <= 2.08 - Arbitrary File Upload vulnerabilityEPSS 0.3%CVE-2024-45136HIGHInCopy | Unrestricted Upload of File with Dangerous Type (CWE-434)EPSS 0.3%CVE-2024-45137HIGHInDesign Desktop | Unrestricted Upload of File with Dangerous Type (CWE-434)EPSS 0.3%CVE-2025-15404MEDIUMcampcodes School File Management System save_file.php unrestricted uploadEPSS 0.3%CVE-2024-27733HIGHFile Upload vulnerability in Byzro Network Smart s42 Management Platform v.S42 allows a local attacker to execute arbitrary code via the useEPSS 0.3%CVE-2021-47899MEDIUMYetiShare File Hosting Script 5.1.0 Remote File Upload SSRF VulnerabilityEPSS 0.3%CVE-2026-4830MEDIUMkalcaddle kodbox Public Share userShare.class.php add privilege escalationEPSS 0.3%CVE-2024-45644MEDIUMIBM Security ReaQta file uploadEPSS 0.3%CVE-2019-25627HIGHFlexHEX 2.71 Local Buffer Overflow via SEH UnicodeEPSS 0.3%CVE-2023-37208—When opening Diagcab files, Firefox did not warn the user that these files may contain malicious code. This vulnerability affects Firefox < EPSS 0.3%CVE-2026-6489MEDIUMQueryMine sms Background Management addteacher.php unrestricted uploadEPSS 0.3%CVE-2026-1879MEDIUMHarvard University IQSS Dataverse Theme Customization ThemeAndWidgets.xhtml unrestricted uploadEPSS 0.3%CVE-2024-1332MEDIUMCustom Fonts – Host Your Fonts Locally <= 2.1.4 - Authenticated (Author+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2026-5546MEDIUMCampcodes Complete Online Learning Management System Crud_model.php add_lesson unrestricted uploadEPSS 0.3%CVE-2025-64176MEDIUMThinkDashboard: Arbitrary File Upload vulnerability in the Backup Import FeatureEPSS 0.3%