CWE-434— Unrestricted Upload of File with Dangerous Type
3,917 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-434page 1 of 79
- CVE-2001-0340NONECVSS 0.0EG 0.02001-07-21
An interaction between the Outlook Web Access (OWA) service in Microsoft Exchange 2000 Server and Internet Explorer allows attackers to execute malicious script code against a user's mailbox via a message attachment that contains HTML code…
- CVE-2001-0901NONECVSS 0.0EG 0.02001-11-19
Hypermail allows remote attackers to execute arbitrary commands on a server supporting SSI via an attachment with a .shtml extension, which is archived on the server and can then be executed by requesting the URL for the attachment.
- CVE-2001-1099NONECVSS 0.0EG 0.02001-09-07
The default configuration of Norton AntiVirus for Microsoft Exchange 2000 2.x allows remote attackers to identify the recipient's INBOX file path by sending an email with an attachment containing malicious content, which includes the path …
- CVE-2002-1841NONECVSS 0.0EG 0.02002-12-31
The document management module in NOLA 1.1.1 and 1.1.2 does not restrict the types of files that are uploaded, which allows remote attackers to upload and execute arbitrary PHP files with extensions such as .php4.
- CVE-2004-2262NONECVSS 0.0EG 0.02004-12-31
ImageManager in e107 before 0.617 does not properly check the types of uploaded files, which allows remote attackers to execute arbitrary code by uploading a PHP file via the upload parameter to images.php.
- CVE-2005-0254LOWCVSS 3.7EG 3.72005-05-02
BibORB 1.3.2, and possibly earlier versions, does not properly enforce a restriction for uploading only PDF and PS files, which allows remote attackers to upload arbitrary files that are presented to other users with PDF or PS icons, which…
- CVE-2005-1868NONECVSS 0.0EG 0.02005-06-09
I-Man 0.9, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by uploading a file attachment with a .php extension.
- CVE-2005-1881NONECVSS 0.0EG 0.02005-06-06
upload.php in YaPiG 0.92b, 0.93u and 0.94u does not properly restrict the file extension for uploaded image files, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code.
- CVE-2005-3288NONECVSS 0.0EG 0.02005-10-23
Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the "compose page" feature, then accessing the file from the cache directory before saving or sending t…
- CVE-2006-2428NONECVSS 0.0EG 0.02006-05-17
add.asp in DUware DUbanner 3.1 allows remote attackers to execute arbitrary code by uploading files with arbitrary extensions, such as ASP files, probably due to client-side enforcement that can be bypassed. NOTE: some of these details ar…
- CVE-2006-4471NONECVSS 0.0EG 0.02006-08-31
The Admin Upload Image functionality in Joomla! before 1.0.11 allows remote authenticated users to upload files outside of the /images/stories/ directory via unspecified vectors.
- CVE-2006-4558NONECVSS 0.0EG 0.02006-09-06
DeluxeBB 1.06 and earlier, when run on the Apache HTTP Server with the mod_mime module, allows remote attackers to execute arbitrary PHP code by uploading files with double extensions via the fileupload parameter in a newthread action in n…
- CVE-2006-5845NONECVSS 0.0EG 0.02006-11-10
Unrestricted file upload vulnerability in index.php in Speedywiki 2.0 allows remote authenticated users to upload and execute arbitrary PHP code by setting the upload parameter to 1.
- CVE-2006-6994NONECVSS 0.0EG 0.02007-02-12
Unrestricted file upload vulnerability in add.asp in OzzyWork Gallery, possibly 2.0 and earlier, allows remote attackers to upload and execute arbitrary ASP files by removing the client-side security checks.
- CVE-2009-20006CRITICALCVSS 9.3EG 0.02025-09-16
osCommerce versions up to and including 2.2 RC2a contain a vulnerability in its administrative file manager utility (admin/file_manager.php). The interface allows file uploads and edits without sufficient input validation or access control…
- CVE-2009-20011CRITICALCVSS 10.0EG 0.02025-08-30
ContentKeeper Web Appliance (now maintained by Impero Software) versions prior to 125.10 are vulnerable to remote command execution due to insecure handling of file uploads via the mimencode CGI utility. The vulnerability allows unauthent…
- CVE-2010-1433CRITICALCVSS 9.8EG 9.82021-06-21
Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and run it in the…
- CVE-2010-3663HIGHCVSS 8.8EG 8.82019-11-04
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 contains an insecure default value of the variable fileDenyPattern which could allow remote attackers to execute arbitrary code on the backend.
- CVE-2010-4661HIGHCVSS 7.8EG 7.82019-11-13
udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules.
- CVE-2011-10004MEDIUMCVSS 6.3EG 6.32023-10-17
A vulnerability was found in reciply Plugin up to 1.1.7 on WordPress. It has been rated as critical. This issue affects some unknown processing of the file uploadImage.php. The manipulation leads to unrestricted upload. The attack may be i…
- CVE-2011-10041CRITICALCVSS 9.3EG 0.02026-01-15
Uploadify WordPress plugin versions up to and including 1.0 contain an arbitrary file upload vulnerability in process_upload.php due to missing file type validation. An unauthenticated remote attacker can upload arbitrary files to the aff…
- CVE-2011-1134CRITICALCVSS 9.8EG 9.82019-11-05
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.
- CVE-2011-1597HIGHCVSS 8.8EG 8.82020-02-06
OpenVAS Manager v2.0.3 allows plugin remote code execution.
- CVE-2011-2933HIGHCVSS 7.2EG 7.22020-01-14
An Arbitrary File Upload vulnerability exists in admin/media/upload.php in WebsiteBaker 2.8.1 and earlier due to a failure to restrict uploaded files with .htaccess, .php4, .php5, and .phtl extensions.
- CVE-2011-4183MEDIUMCVSS 6.5EG 9.82018-06-13
A vulnerability in open build service allows remote attackers to upload arbitrary RPM files. Affected releases are SUSE open build service prior to 2.1.16.
- CVE-2011-4906CRITICALCVSS 9.8EG 9.82020-02-12
Tiny browser in TinyMCE 3.0 editor in Joomla! before 1.5.13 allows file upload and arbitrary PHP code execution.
- CVE-2011-4907MEDIUMCVSS 5.3EG 5.32020-01-15
Joomla! 1.5x through 1.5.12: Missing JEXEC Check
- CVE-2011-4908CRITICALCVSS 9.8EG 9.82020-02-12
TinyBrowser plugin for Joomla! before 1.5.13 allows arbitrary file upload via upload.php.
- CVE-2012-10019CRITICALCVSS 9.8EG 9.82025-07-19
The Front End Editor plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the upload.php file in versions before 2.3. This makes it possible for unauthenticated attackers to upload arbitrary …
- CVE-2012-10020CRITICALCVSS 9.8EG 9.82025-07-22
The FoxyPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the uploadify.php file in versions up to, and including, 0.4.2.1. This makes it possible for unauthenticated attackers to upl…
- CVE-2012-10026CRITICALCVSS 10.0EG 0.02025-08-05
The WordPress plugin Asset-Manager version 2.0 and below contains an unauthenticated arbitrary file upload vulnerability in upload.php. The endpoint fails to properly validate and restrict uploaded file types, allowing remote attackers to …
- CVE-2012-10027CRITICALCVSS 9.3EG 0.02025-08-05
WP-Property plugin for WordPress up to and including version 1.35.0 contains an unauthenticated file upload vulnerability in the third-party `uploadify.php` script. A remote attacker can upload arbitrary PHP files to a temporary directory …
- CVE-2012-10030CRITICALCVSS 9.8EG 9.82025-08-05
FreeFloat FTP Server contains multiple critical design flaws that allow unauthenticated remote attackers to upload arbitrary files to sensitive system directories. The server accepts empty credentials, defaults user access to the root of t…
- CVE-2012-10036CRITICALCVSS 9.3EG 0.02025-08-08
Project Pier 0.8.8 and earlier contains an unauthenticated arbitrary file upload vulnerability in tools/upload_file.php. The upload handler fails to validate the file type or enforce authentication, allowing remote attackers to upload mali…
- CVE-2012-10038CRITICALCVSS 9.3EG 0.02025-08-11
Auxilium RateMyPet contains an unauthenticated arbitrary file upload vulnerability in upload_banners.php. The banner upload feature fails to validate file types or enforce authentication, allowing remote attackers to upload malicious PHP f…
- CVE-2012-10042HIGHCVSS 8.7EG 0.02025-08-08
Sflog! CMS 1.0 contains an authenticated arbitrary file upload vulnerability in the blog management interface. The application ships with default credentials (admin:secret) and allows authenticated users to upload files via manage.php. The…
- CVE-2012-10044CRITICALCVSS 10.0EG 0.02025-08-08
MobileCartly version 1.0 contains an arbitrary file creation vulnerability in the savepage.php script. The application fails to perform authentication or authorization checks before invoking file_put_contents() on attacker-controlled input…
- CVE-2012-10045CRITICALCVSS 9.3EG 0.02025-08-08
XODA version 0.4.5 contains an unauthenticated file upload vulnerability that allows remote attackers to execute arbitrary PHP code on the server. The flaw resides in the upload functionality, which fails to properly validate or restrict u…
- CVE-2012-10049CRITICALCVSS 9.3EG 0.02025-08-08
WebPageTest version 2.6 and earlier contains an arbitrary file upload vulnerability in the resultimage.php script. The application fails to validate or sanitize user-supplied input before saving uploaded files to a publicly accessible dire…
- CVE-2012-10050CRITICALCVSS 9.3EG 0.02025-08-08
CuteFlow version 2.11.2 and earlier contains an arbitrary file upload vulnerability in the restart_circulation_values_write.php script. The application fails to validate or restrict uploaded file types, allowing unauthenticated attackers t…
- CVE-2012-10052CRITICALCVSS 9.3EG 0.02025-08-08
EGallery version 1.2 contains an unauthenticated arbitrary file upload vulnerability in the uploadify.php script. The application fails to validate file types or enforce authentication, allowing remote attackers to upload malicious PHP fil…
- CVE-2012-10054CRITICALCVSS 9.8EG 9.82025-08-13
Umbraco CMS versions prior to 4.7.1 are vulnerable to unauthenticated remote code execution via the codeEditorSave.asmx SOAP endpoint, which exposes a SaveDLRScript operation that permits arbitrary file uploads without authentication. By e…
- CVE-2012-10056HIGHCVSS 8.7EG 0.02025-08-13
PHP Volunteer Management System v1.0.2 contains an arbitrary file upload vulnerability in its document upload functionality. Authenticated users can upload files to the mods/documents/uploads/ directory without any restriction on file type…
- CVE-2012-10062HIGHCVSS 8.7EG 0.02025-08-30
A vulnerability in XAMPP, developed by Apache Friends, version 1.7.3's default WebDAV configuration allows remote authenticated attackers to upload and execute arbitrary PHP code. The WebDAV service, accessible via /webdav/, accepts HTTP P…
- CVE-2012-10064CRITICALCVSS 9.3EG 0.02026-01-16
Omni Secure Files plugin versions prior to 0.1.14 contain an arbitrary file upload vulnerability in the bundled plupload example endpoint. The /wp-content/plugins/omni-secure-files/plupload/examples/upload.php handler allows unauthenticate…
- CVE-2012-1592HIGHCVSS 8.8EG 8.82019-12-05
A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.
- CVE-2012-2226CRITICALCVSS 9.8EG 9.82020-01-09
Invision Power Board before 3.3.1 fails to sanitize user-supplied input which could allow remote attackers to obtain sensitive information or execute arbitrary code by uploading a malicious file.
- CVE-2012-2950HIGHCVSS 8.1EG 8.12020-01-09
Gateway Geomatics MapServer for Windows before 3.0.6 contains a Local File Include Vulnerability which allows remote attackers to execute local PHP code and obtain sensitive information.
- CVE-2012-5190CRITICALCVSS 9.8EG 9.82020-01-21
Prizm Content Connect 5.1 has an Arbitrary File Upload Vulnerability
- CVE-2012-6649CRITICALCVSS 9.8EG 9.82020-01-23
WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improper file upload.
Map vulnerabilities like CWE-434 to your infrastructure
EchelonGraph correlates every CVE — across CWE-434 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →