CWE-434 危险类型文件的不加限制上传 类弱点 2013 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | 发布日期 |
|---|---|---|---|---|
| CVE-2026-5364 | Contact Form 7 ≤1.1.3 未授权任意文件上传漏洞 — Drag and Drop File Upload for Contact Form 7 | 8.1 | High | 2026-04-24 |
| CVE-2026-41269 | Flowise 代码问题漏洞 — Flowise | 7.1 | High | 2026-04-23 |
| CVE-2026-6885 | BorG SPM 代码问题漏洞 — Borg SPM 2007 | 9.8 | Critical | 2026-04-23 |
| CVE-2026-3844 | WordPress plugin Breeze Cache 代码问题漏洞 — Breeze Cache | 9.8 | Critical | 2026-04-23 |
| CVE-2025-36074 | IBM Security Verify Directory 代码问题漏洞 — Security Verify Directory (Container) | 5.5 | Medium | 2026-04-22 |
| CVE-2026-6835 | aEnrich a+HCM 代码问题漏洞 — a+HCM | 6.1 | Medium | 2026-04-22 |
| CVE-2019-25714 | Seeyon OA A8 代码问题漏洞 — A8-V5 Collaborative Management Software | - | - | 2026-04-21 |
| CVE-2026-6249 | Vvveb 安全漏洞 — Vvveb CMS | 8.8 | High | 2026-04-20 |
| CVE-2026-6257 | Vvveb 安全漏洞 — Vvveb CMS | 9.1 | Critical | 2026-04-20 |
| CVE-2026-40488 | OpenMage Magento Lts(Magento) 安全漏洞 — magento-lts | - | - | 2026-04-20 |
| CVE-2026-6650 | Z-BlogPHP 安全漏洞 — Z-BlogPHP | 4.7 | Medium | 2026-04-20 |
| CVE-2026-6602 | Hospital Management System 安全漏洞 — Hospital Management System | 7.3 | High | 2026-04-20 |
| CVE-2026-6596 | Langflow 安全漏洞 — langflow | 7.3 | High | 2026-04-20 |
| CVE-2026-6561 | EyouCMS 安全漏洞 — EyouCMS | 4.7 | Medium | 2026-04-19 |
| CVE-2026-6518 | WordPress plugin CMP – Coming Soon & Maintenance Plugin by NiteoThemes 安全漏洞 — CMP – Coming Soon & Maintenance Plugin by NiteoThemes | 8.8 | High | 2026-04-18 |
| CVE-2026-5718 | WordPress plugin Drag and Drop Multiple File Upload for Contact Form 安全漏洞 — Drag and Drop Multiple File Upload for Contact Form 7 | 8.1 | High | 2026-04-17 |
| CVE-2026-6489 | sms 安全漏洞 — sms | 6.3 | Medium | 2026-04-17 |
| CVE-2026-1555 | WordPress plugin WebStack 安全漏洞 — WebStack | 9.8 | Critical | 2026-04-15 |
| CVE-2026-40040 | Pachno 代码问题漏洞 — Pachno | 8.8 | High | 2026-04-13 |
| CVE-2026-30804 | Pandora FMS 安全漏洞 — Pandora FMS | 9.8 | - | 2026-04-13 |
| CVE-2018-25258 | RGui 代码问题漏洞 — RGui | 8.4 | High | 2026-04-12 |
| CVE-2026-33704 | Chamilo LMS 代码问题漏洞 — chamilo-lms | 7.1 | High | 2026-04-10 |
| CVE-2026-32931 | Chamilo LMS 代码问题漏洞 — chamilo-lms | 7.5 | High | 2026-04-10 |
| CVE-2026-2942 | WordPress plugin ProSolution WP Client 代码问题漏洞 — ProSolution WP Client | 9.8 | Critical | 2026-04-08 |
| CVE-2026-4808 | WordPress plugin Gerador de Certificados – DevApps 代码问题漏洞 — Gerador de Certificados – DevApps | 7.2 | High | 2026-04-08 |
| CVE-2026-3535 | WordPress plugin DSGVO Google Web Fonts GDPR 代码问题漏洞 — DSGVO Google Web Fonts GDPR | 9.8 | Critical | 2026-04-08 |
| CVE-2026-33273 | ICZ MATCHA INVOICE 代码问题漏洞 — MATCHA INVOICE | 8.8AI | HighAI | 2026-04-08 |
| CVE-2026-0740 | WordPress plugin Ninja Forms - File Uploads 代码问题漏洞 — Ninja Forms - File Uploads | 9.8 | Critical | 2026-04-07 |
| CVE-2026-35164 | Brave CMS 代码问题漏洞 — BraveCMS-2.0 | 8.8 | High | 2026-04-06 |
| CVE-2026-35047 | Brave CMS 代码问题漏洞 — BraveCMS-2.0 | 9.8AI | CriticalAI | 2026-04-06 |
CWE-434(危险类型文件的不加限制上传) 是常见的弱点类别,本平台收录该类弱点关联的 2013 条 CVE 漏洞。