CWE-434
Unrestricted Upload of File with Dangerous Type
The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.
We have discovered 5,338 live websites that are affected by CWE-434.
CVEs
- Count - 4
CWE References
Countries
 United States | 1,159 websites |
 Japan | 1,737 websites |
 Germany | 427 websites |
 France | 189 websites |
 GB | 182 websites |
 Italy | 131 websites |
 Spain | 125 websites |
 Russia | 122 websites |
 Poland | 102 websites |
 Brazil | 87 websites |
TLDs
| .com | 2,457 websites |
| .jp | 346 websites |
| .de | 273 websites |
| .org | 269 websites |
| .net | 256 websites |
| .co.jp | 156 websites |
| .ru | 99 websites |
| .co.uk | 82 websites |
| .it | 80 websites |
| .pl | 78 websites |
Newest CVEs
List of the most recent CVEs that are part of CWE-434| Discovered | CVE | Description | Websites |
|---|---|---|---|
| Feb, 2024 | CVE-2024-25913 | WordPress MoveTo Plugin <= 6.2 is vulnerable to Arbitrary File Upload | 49 |
| Dec, 2023 | CVE-2023-34007 | WordPress Download Monitor Plugin <= 4.8.3 is vulnerable to Arbitrary File Upload | 1,555 |
| Nov, 2023 | CVE-2023-5604 | Asgaros Forum < 2.7.1 - Unauthenticated Arbitrary File Upload | 228 |
| Nov, 2021 | CVE-2021-42362 | WordPress Popular Posts <= 5.3.2 Authenticated Arbitrary File Upload | 3,512 |
The most widespread CVEs
List of the most common CVEs that are part of CWE-434| Discovered | CVE | Description | Websites |
|---|---|---|---|
| Nov, 2021 | CVE-2021-42362 | WordPress Popular Posts <= 5.3.2 Authenticated Arbitrary File Upload | 3,512 |
| Dec, 2023 | CVE-2023-34007 | WordPress Download Monitor Plugin <= 4.8.3 is vulnerable to Arbitrary File Upload | 1,555 |
| Nov, 2023 | CVE-2023-5604 | Asgaros Forum < 2.7.1 - Unauthenticated Arbitrary File Upload | 228 |
| Feb, 2024 | CVE-2024-25913 | WordPress MoveTo Plugin <= 6.2 is vulnerable to Arbitrary File Upload | 49 |
Websites affected by CWE-434
Top websites that are affected by CWE-434. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***.**********.com | United States | *,*** | |
| ***************.com | United States | **,*** | |
| *******************.com | Japan | **,*** | |
| ********.tokyo | Japan | **,*** | |
| *****.***.**.uk | GB | **,*** | |
| ******.com | United States | **,*** | |
| ***.***************.com | United States | **,*** | |
| **************.com | United States | **,*** | |
| ********.com | United States | **,*** | |
| ***.**********.com | United States | **,*** |