CWE-434— Unrestricted Upload of File with Dangerous Type
3,921 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-434page 32 of 79
- CVE-2022-42154CRITICALCVSS 9.8EG 9.82022-10-17
An arbitrary file upload vulnerability in the component /apiadmin/upload/attach of 74cmsSE v3.13.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-42189HIGHCVSS 7.2EG 7.22022-10-21
Emlog Pro 1.6.0 plugins upload suffers from a remote code execution (RCE) vulnerability.
- CVE-2022-42198HIGHCVSS 8.8EG 8.82022-10-20
In Simple Exam Reviewer Management System v1.0 the User List function suffers from insecure file upload.
- CVE-2022-42201HIGHCVSS 7.2EG 7.22022-10-20
Simple Exam Reviewer Management System v1.0 is vulnerable to Insecure file upload.
- CVE-2022-42229HIGHCVSS 8.8EG 8.82022-10-11
Wedding Planner v1.0 is vulnerable to Arbitrary code execution via package_edit.php.
- CVE-2022-42287MEDIUMCVSS 6.0EG 7.82023-01-13
NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can upload and download arbitrary files under certain circumstances, which may lead to denial of service, escalation of privileges, information disclosure an…
- CVE-2022-4232MEDIUMCVSS 4.7EG 9.82022-11-30
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the …
- CVE-2022-42443LOWCVSS 2.2EG 2.22024-02-17
An undisclosed issue in Trusteer iOS SDK for mobile versions prior to 5.7 and Trusteer Android SDK for mobile versions prior to 5.7 may allow uploading of files. IBM X-Force ID: 238535.
- CVE-2022-42449MEDIUMCVSS 4.6EG 4.62025-04-30
Unsafe default file type filter policy in HCL Domino Volt allows upload of .html file and execution of unsafe JavaScript in deployed applications
- CVE-2022-42698CRITICALCVSS 9.8EG 9.82022-11-18
Unauth. Arbitrary File Upload vulnerability in WordPress Api2Cart Bridge Connector plugin <= 1.1.0 on WordPress.
- CVE-2022-4272MEDIUMCVSS 6.3EG 9.82022-12-03
A vulnerability, which was classified as critical, has been found in FeMiner wms. Affected by this issue is some unknown functionality of the file /product/savenewproduct.php?flag=1. The manipulation of the argument upfile leads to unrestr…
- CVE-2022-4273HIGHCVSS 7.3EG 9.82022-12-03
A vulnerability, which was classified as critical, has been found in SourceCodester Human Resource Management System 1.0. This issue affects some unknown processing of the file /hrm/controller/employee.php of the component Content-Type Han…
- CVE-2022-4276MEDIUMCVSS 6.3EG 9.82022-12-03
A vulnerability was found in House Rental System and classified as critical. Affected by this issue is some unknown functionality of the file tenant-engine.php of the component POST Request Handler. The manipulation of the argument id_phot…
- CVE-2022-42925CRITICALCVSS 9.9EG 8.82022-10-31
There is a vulnerability on Forma LMS version 3.1.0 and earlier that could allow an authenticated attacker (with the role of student) to privilege escalate in order to upload a Zip file through the plugin upload component. The exploitation…
- CVE-2022-42971CRITICALCVSS 9.8EG 9.82023-02-01
A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when the attacker uploads a malicious JSP file. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 1…
- CVE-2022-43050HIGHCVSS 7.2EG 7.22022-11-07
Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability in the component update_profile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43061HIGHCVSS 7.2EG 7.22022-11-03
Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /operations/travellers.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP fil…
- CVE-2022-43074CRITICALCVSS 9.8EG 9.82022-11-10
AyaCMS v3.1.2 was discovered to contain an arbitrary file upload vulnerability via the component /admin/fst_upload.inc.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43083HIGHCVSS 7.2EG 7.22022-11-01
An arbitrary file upload vulnerability in admin-add-vehicle.php of Vehicle Booking System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43085HIGHCVSS 7.2EG 7.22022-11-01
An arbitrary file upload vulnerability in add_product.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43146HIGHCVSS 7.2EG 7.22022-11-14
An arbitrary file upload vulnerability in the image upload function of Canteen Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43192MEDIUMCVSS 6.7EG 6.72022-11-17
An arbitrary file upload vulnerability in the component /dede/file_manage_control.php of Dedecms v5.7.101 allows attackers to execute arbitrary code via a crafted PHP file. This vulnerability is related to an incomplete fix for CVE-2022-40…
- CVE-2022-43231HIGHCVSS 7.2EG 7.22022-10-28
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/manage_website.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43234CRITICALCVSS 9.8EG 9.82022-11-16
An arbitrary file upload vulnerability in the /attachments component of Hoosk v1.8 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43265CRITICALCVSS 9.8EG 9.82022-11-15
An arbitrary file upload vulnerability in the component /pages/save_user.php of Canteen Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43275HIGHCVSS 7.2EG 7.22022-10-28
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-43277HIGHCVSS 7.2EG 7.22022-11-09
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via ip/youthappam/php_action/editFile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-4328CRITICALCVSS 9.8EG 9.82023-03-06
The WooCommerce Checkout Field Manager WordPress plugin before 18.0 does not validate files to be uploaded, which could allow unauthenticated attackers to upload arbitrary files such as PHP on the server
- CVE-2022-43283MEDIUMCVSS 5.5EG 5.52022-10-28
wasm2c v1.0.29 was discovered to contain an abort in CWriter::Write.
- CVE-2022-43303CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version…
- CVE-2022-43304CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version o…
- CVE-2022-43305CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-algorithms package. The affected ver…
- CVE-2022-43306HIGHCVSS 8.8EG 8.82022-11-07
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-dates package. The affected version o…
- CVE-2022-43436HIGHCVSS 8.8EG 8.82023-01-03
The File Upload function of EasyTest has insufficient filtering for special characters and file type. A remote attacker authenticated as a general user can upload and execute arbitrary files, to manipulate system or disrupt service.
- CVE-2022-4395CRITICALCVSS 9.8EG 9.82023-01-30
The Membership For WooCommerce WordPress plugin before 2.1.7 does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as malicious PHP code, and achieve RCE.
- CVE-2022-43979MEDIUMCVSS 5.9EG 9.82023-01-27
There is a Path Traversal that leads to a Local File Inclusion in Pandora FMS v764. A function is called to check that the parameter that the user has inserted does not contain malicious characteres, but this check is insufficient. An atta…
- CVE-2022-44036HIGHCVSS 7.2EG 7.22023-01-03
In b2evolution 7.2.5, if configured with admins_can_manipulate_sensitive_files, arbitrary file upload is allowed for admins, leading to command execution. NOTE: the vendor's position is that this is "very obviously a feature not an issue a…
- CVE-2022-44048CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version …
- CVE-2022-44049CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-grammars package. The affected versi…
- CVE-2022-44050CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-networking for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-json package. The affected versi…
- CVE-2022-44051CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-stats for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-math package. The affected version of…
- CVE-2022-44052CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-timezones package. The affected versi…
- CVE-2022-44053CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-networking for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-user-agents package. The affecte…
- CVE-2022-44054CRITICALCVSS 9.8EG 9.82022-11-07
The d8s-xml for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-utility package. The affected version o…
- CVE-2022-44276CRITICALCVSS 9.8EG 9.82023-06-28
In Responsive Filemanager < 9.12.0, an attacker can bypass upload restrictions resulting in RCE.
- CVE-2022-44289HIGHCVSS 8.8EG 8.82022-12-06
Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.
- CVE-2022-44354CRITICALCVSS 9.8EG 9.82022-11-29
SolarView Compact 4.0 and 5.0 is vulnerable to Unrestricted File Upload via a crafted php file.
- CVE-2022-44384HIGHCVSS 8.8EG 8.82022-11-17
An arbitrary file upload vulnerability in rconfig v3.9.6 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2022-44400CRITICALCVSS 9.8EG 9.82022-11-28
Purchase Order Management System v1.0 contains a file upload vulnerability via /purchase_order/admin/?page=system_info.
- CVE-2022-44401CRITICALCVSS 9.8EG 9.82022-11-28
Online Tours & Travels Management System v1.0 contains an arbitrary file upload vulnerability via /tour/admin/file.php.
Map vulnerabilities like CWE-434 to your infrastructure
EchelonGraph correlates every CVE — across CWE-434 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →