Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-434 (危险类型文件的不加限制上传) — Vulnerability Class 2018

2018 vulnerabilities classified as CWE-434 (危险类型文件的不加限制上传). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-1684 HadSky unrestricted upload — HadSky 4.7 Medium2023-03-29
CVE-2022-3682 SDM600 file permission validation — SDM600 9.9 Critical2023-03-28
CVE-2023-25828 Authenticate Remote Code Execution in Pluck CMS — pluck-cms 7.2 -2023-03-27
CVE-2023-25909 HGiga Inc. OAKlouds - Arbitrary File Upload — HGiga OAKlouds 9.8 Critical2023-03-27
CVE-2023-25655 baserCMS allows any file to be uploaded — basercms 9.8 Critical2023-03-23
CVE-2023-25654 baserCMS File Uploader Remote Code Execution (RCE) vulnerability — basercms 9.8 Critical2023-03-23
CVE-2023-1561 code-projects Simple Online Hotel Reservation System add_room.php unrestricted upload — Simple Online Hotel Reservation System 6.3 Medium2023-03-22
CVE-2023-1559 SourceCodester Storage Unit Rental Management System unrestricted upload — Storage Unit Rental Management System 4.7 Medium2023-03-22
CVE-2023-1558 Simple and Beautiful Shopping Cart System uploadera.php unrestricted upload — Simple and Beautiful Shopping Cart System 6.3 Medium2023-03-22
CVE-2023-1501 RockOA acloudCosAction.php.SQL runAction unrestricted upload — RockOA 6.3 Medium2023-03-19
CVE-2023-1497 SourceCodester Simple and Nice Shopping Cart Script uploaderm.php unrestricted upload — Simple and Nice Shopping Cart Script 6.3 Medium2023-03-19
CVE-2023-1484 xzjie cms upload unrestricted upload — cms 6.3 Medium2023-03-18
CVE-2023-1479 SourceCodester Simple Music Player save_music.php unrestricted upload — Simple Music Player 6.3 Medium2023-03-18
CVE-2023-1442 Meizhou Qingyunke QYKCMS Update api.php unrestricted upload — QYKCMS 4.7 Medium2023-03-17
CVE-2023-1433 SourceCodester Gadget Works Online Ordering System Products unrestricted upload — Gadget Works Online Ordering System 4.7 Medium2023-03-16
CVE-2023-1415 Simple Art Gallery adminHome.php sliderPicSubmit unrestricted upload — Simple Art Gallery 6.3 Medium2023-03-15
CVE-2023-1392 SourceCodester Online Pizza Ordering System save_menu unrestricted upload — Online Pizza Ordering System 6.3 Medium2023-03-14
CVE-2023-1391 SourceCodester Online Tours & Travels Management System ab.php unrestricted upload — Online Tours & Travels Management System 4.7 Medium2023-03-14
CVE-2023-1328 Guizhou 115cms index unrestricted upload — 115cms 4.7 Medium2023-03-10
CVE-2023-1313 Unrestricted Upload of File with Dangerous Type in cockpit-hq/cockpit — cockpit-hq/cockpit 8.8 -2023-03-10
CVE-2023-1303 UCMS System File Management Module fileedit.php unrestricted upload — UCMS 6.3 Medium2023-03-09
CVE-2015-10087 UpThemes Theme DesignFolio Plus unrestricted upload — Theme DesignFolio Plus 6.3 Medium2023-03-07
CVE-2021-4330 Envato Elements <= 2.0.10 & Template Kit <= 1.0.13 - Authenticated (Contributor+) Arbitrary File Upload — Template Kit – Import 8.8 High2023-03-07
CVE-2023-1185 ECshop New Product unrestricted upload — ECshop 4.7 Medium2023-03-06
CVE-2023-1184 ECshop Backup Database database.php unrestricted upload — ECshop 4.7 Medium2023-03-06
CVE-2022-41217 Cloudflow - Unauthenticated file upload vulnerability — Cloudflow 9.8 Critical2023-02-22
CVE-2023-0943 SourceCodester Best POS Management System Image save_settings unrestricted upload — Best POS Management System 4.7 Medium2023-02-21
CVE-2023-0918 codeprojects Pharmacy Management System Avatar Image add.php unrestricted upload — Pharmacy Management System 6.3 Medium2023-02-19
CVE-2023-24530 SAP BusinessObjects Business Intelligence Platform 代码问题漏洞 — BusinessObjects Business Intelligence Platform (CMC) 8.4 High2023-02-14
CVE-2023-23851 SAP Business Planning and Consolidation 代码问题漏洞 — Business Planning and Consolidation 5.4 Medium2023-02-14

Vulnerabilities classified as CWE-434 (危险类型文件的不加限制上传) represent 2018 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.