Falhas do tipo CWE-434
2.804 resultadosCVE-2026-33071MEDIUMFileRise: WebDAV upload path bypasses filename validation enforced by regular uploadsEPSS 0.6%CVE-2025-34328CRITICALAudioCodes Fax/IVR Appliance <= 2.6.23 Unauthenticated File Upload RCE via ajaxScript.phpEPSS 0.6%CVE-2024-4904MEDIUMByzoro Smart S200 Management Platform userattestation.php unrestricted uploadEPSS 0.6%CVE-2025-10747HIGHWP-DownloadManager <= 1.68.11 - Authenticated (Admin+) Arbitrary File UploadEPSS 0.6%CVE-2025-5061HIGHWP Import Export Lite <= 3.9.29 - Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.6%CVE-2024-2406MEDIUMGacjie Server Upload.php index unrestricted uploadEPSS 0.6%CVE-2024-7192MEDIUMitsourcecode Society Management System student.php unrestricted uploadEPSS 0.6%CVE-2024-52677CRITICALHkCms <= v2.3.2.240702 is vulnerable to file upload in the getFileName method in /app/common/library/Upload.php.EPSS 0.6%CVE-2024-5734MEDIUMitsourcecode Online Discussion Forum poster.php unrestricted uploadEPSS 0.6%CVE-2025-4279HIGHExternal image replace <= 1.0.8 - Authenticated (Contributor+) Arbitrary File UploadEPSS 0.6%CVE-2022-0499—Sermon Browser <= 0.45.22 - Arbitrary File Upload via CSRFEPSS 0.6%CVE-2023-51411CRITICALWordPress Frontend Admin by DynamiApps Plugin <= 3.18.3 is vulnerable to Arbitrary File UploadEPSS 0.6%CVE-2023-51473CRITICALWordPress TerraClassifieds Plugin <= 2.0.3 is vulnerable to Arbitrary File UploadEPSS 0.6%CVE-2021-47943HIGHTextPattern CMS 4.8.7 Remote Code Execution via File UploadEPSS 0.6%CVE-2025-47787HIGHEmlog Pro Contains a File Upload VulnerabilityEPSS 0.6%CVE-2025-2891HIGHWP Pro Real Estate 7 <= 3.5.4 - Authenticated (Custom) Arbitrary File UploadEPSS 0.6%CVE-2025-24650CRITICALWordPress Tourfic plugin <= 2.15.3 - Arbitrary File Upload vulnerabilityEPSS 0.6%CVE-2021-47904HIGHPhreeBooks 5.2.3 - Remote Code ExecutionEPSS 0.6%CVE-2025-12846HIGHBlocksy Companion <= 2.1.19 - Authenticated (Author+) Arbitrary File Upload via SVG Upload BypassEPSS 0.6%CVE-2025-5746CRITICALDrag and Drop Multiple File Upload (Pro) - WooCommerce <= 1.7.1 and 5.0 - 5.0.5 - Unauthenticated Arbitrary File UploadEPSS 0.6%