Vulnerabilities (CVE)

Filtered by CWE-434
Total 2655 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-19634 2 Getk2, Verot Project 2 K2, Verot 2024-11-21 7.5 HIGH 9.8 CRITICAL
class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension for Joomla! and other products, omits .pht from the set of dangerous file extensions, a similar issue to CVE-2019-19576.
CVE-2019-19595 2 Adobe, Prestashop 2 Stock Api Integration, Prestashop 2024-11-21 7.5 HIGH 9.8 CRITICAL
reset/modules/advanced_form_maker_edit/multiupload/upload.php in the RESET.PRO Adobe Stock API integration 4.8 for PrestaShop allows remote attackers to execute arbitrary code by uploading a .php file.
CVE-2019-19594 2 Adobe, Prestashop 2 Stock Api Integration, Prestashop 2024-11-21 7.5 HIGH 9.8 CRITICAL
reset/modules/fotoliaFoto/multi_upload.php in the RESET.PRO Adobe Stock API Integration for PrestaShop 1.6 and 1.7 allows remote attackers to execute arbitrary code by uploading a .php file.
CVE-2019-19576 2 Getk2, Verot Project 2 K2, Verot 2024-11-21 7.5 HIGH 9.8 CRITICAL
class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for Joomla! and other products, omits .phar from the set of dangerous file extensions.
CVE-2019-19493 1 Kentico 1 Kentico 2024-11-21 3.5 LOW 5.4 MEDIUM
Kentico before 12.0.50 allows file uploads in which the Content-Type header is inconsistent with the file extension, leading to XSS.
CVE-2019-19468 1 10-strike 1 Free Photo Viewer 2024-11-21 6.8 MEDIUM 7.8 HIGH
Free Photo Viewer 1.3 allows remote attackers to execute arbitrary code via a crafted BMP and/or TIFF file that triggers a malformed SEH, as demonstrated by a 0012ECB4 FreePhot.00425642 42200008 corrupt entry.
CVE-2019-19084 1 Octopus 1 Octopus Deploy 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
In Octopus Deploy 3.3.0 through 2019.10.4, an authenticated user with PackagePush permission to upload packages could upload a maliciously crafted package, triggering an exception that exposes underlying operating system details.
CVE-2019-19020 1 Titanhq 1 Webtitan 2024-11-21 9.0 HIGH 7.2 HIGH
An issue was discovered in TitanHQ WebTitan before 5.18. In the administration web interface it is possible to upload a crafted backup file that enables an attacker to execute arbitrary code by overwriting existing files or adding new PHP files under the web root. This requires the attacker to have access to a valid web interface account.
CVE-2019-18952 1 Sibsoft 1 Xfilesharing 2024-11-21 7.5 HIGH 9.8 CRITICAL
SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP.
CVE-2019-18643 1 Sparkdevnetwork 1 Rock Rms 2024-11-21 7.5 HIGH 9.8 CRITICAL
Rock RMS versions before 8.10 and versions 9.0 through 9.3 fails to properly validate files uploaded in the application. The only protection mechanism is a file-extension blacklist that can be bypassed by adding multiple spaces and periods after the file name. This could allow an attacker to upload ASPX code and gain remote code execution on the application. The application typically runs as LocalSystem as mandated in the installation guide. Patched in versions 8.10 and 9.4.
CVE-2019-18417 1 Sourcecodester 1 Restaurant Management System 2024-11-21 6.5 MEDIUM 8.8 HIGH
Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-supplied input, e.g., "add a new food" allows .php files.
CVE-2019-18320 1 Siemens 1 Sppa-t3000 Application Server 2024-11-21 5.0 MEDIUM 7.5 HIGH
A vulnerability has been identified in SPPA-T3000 Application Server (All versions < Service Pack R8.2 SP2). An attacker with network access to the Application Server could be able to upload arbitrary files without authentication. Please note that an attacker needs to have network access to the Application Server in order to exploit this vulnerability. At the time of advisory publication no public exploitation of this security vulnerability was known.
CVE-2019-18313 1 Siemens 1 Sppa-t3000 Ms3000 Migration Server 2024-11-21 7.5 HIGH 9.8 CRITICAL
A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could gain remote code execution by sending specifically crafted objects to one of the RPC services. Please note that an attacker needs to have network access to the MS3000 in order to exploit this vulnerability. At the time of advisory publication no public exploitation of this security vulnerability was known.
CVE-2019-18288 1 Siemens 1 Sppa-t3000 Application Server 2024-11-21 6.5 MEDIUM 8.8 HIGH
A vulnerability has been identified in SPPA-T3000 Application Server (All versions < Service Pack R8.2 SP2). An attacker with valid authentication at the RMI interface could be able to gain remote code execution through an unsecured file upload. Please note that an attacker needs to have access to the Application Highway in order to exploit this vulnerability. At the time of advisory publication no public exploitation of this security vulnerability was known.
CVE-2019-18204 1 Zucchetti 1 Infobusiness 2024-11-21 6.5 MEDIUM 8.8 HIGH
Zucchetti InfoBusiness before and including 4.4.1 allows any authenticated user to upload .php files in order to achieve code execution.
CVE-2019-17536 1 Gilacms 1 Gila Cms 2024-11-21 4.0 MEDIUM 4.9 MEDIUM
Gila CMS through 1.11.4 allows Unrestricted Upload of a File with a Dangerous Type via the moveAction function in core/controllers/fm.php. The attacker needs to use admin/media_upload and fm/move.
CVE-2019-17490 1 Jnoj 1 Jiangnan Online Judge 2024-11-21 6.5 MEDIUM 8.8 HIGH
app\modules\polygon\controllers\ProblemController in Jiangnan Online Judge (aka jnoj) 0.8.0 allows arbitrary file upload, as demonstrated by PHP code (with a .php filename but the image/png content type) to the web/polygon/problem/tests URI.
CVE-2019-17403 1 Nokia 1 Impact 2024-11-21 6.5 MEDIUM 8.8 HIGH
Nokia IMPACT < 18A: An unrestricted File Upload vulnerability was found that may lead to Remote Code Execution.
CVE-2019-17352 1 Jfinal 1 Jfinal 2024-11-21 5.0 MEDIUM 7.5 HIGH
In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile() function: one can upload any type of file. For example, a .jsp file may be stored and almost immediately deleted, but this deletion step does not occur for certain exceptions.
CVE-2019-17325 1 Clipsoft 1 Rexpert 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
ClipSoft REXPERT 1.0.0.527 and earlier version allows remote attacker to upload arbitrary local file via the ActiveX method in RexViewerCtrl30.ocx. That could lead to disclosure of sensitive information. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page.