← All weakness types

Unrestricted File Upload

CWE-434

4,140 vulnerabilities are classified as Unrestricted File Upload (CWE-434). The most exploitable are shown first (by EPSS), each with its CVSS score, exploit-prediction, CISA KEV status, and available fix.

CVESeverityCVSSEPSSExploitedFix
CVE-2017-12617High8.1100%KEVFix
CVE-2018-15961Critical9.8100%KEV-
CVE-2021-31207Medium6.6100%KEV + RansomFix
CVE-2017-12615High8.1100%KEV + Ransom-
CVE-2025-31324Critical10.099%KEV + Ransom-
CVE-2024-50623Critical9.899%KEV + RansomFix
CVE-2016-3088Critical9.899%KEVFix
CVE-2021-3378Critical9.898%-Fix
CVE-2020-25213Critical10.097%KEVFix
CVE-2018-9206Critical9.897%-Fix
CVE-2020-8260High7.296%KEV-
CVE-2017-6090High8.896%--
CVE-2020-6754Critical9.895%-Fix
CVE-2020-24186Critical10.095%--
CVE-2024-8856Critical9.894%-Fix
CVE-2021-37539Critical9.893%-Fix
CVE-2022-1329High8.893%--
CVE-2024-7399High8.892%KEVFix
CVE-2014-8739Critical9.892%-Fix
CVE-2023-46264Critical9.890%-Fix
CVE-2020-35489Critical10.090%-Fix
CVE-2023-20073Medium5.389%--
CVE-2022-30216High8.888%-Fix
CVE-2021-24145High7.288%-Fix
CVE-2020-28871Critical9.886%--
CVE-2025-52691Critical10.085%KEV + RansomFix
CVE-2023-28128High7.285%--
CVE-2021-24155High7.284%-Fix
CVE-2023-50386High8.884%-Fix
CVE-2020-7246High8.883%--
CVE-2019-8942High8.883%-Fix
CVE-2021-21351Medium5.482%-Fix
CVE-2023-46263Critical9.882%-Fix
CVE-2023-5360Critical9.882%-Fix
CVE-2014-8516Critical9.882%--
CVE-2021-42125High8.882%-Fix
CVE-2021-42362High8.880%--
CVE-2018-17553High8.879%--
CVE-2020-12800Critical9.879%-Fix
CVE-2020-11108High8.878%--
CVE-2024-53677Critical9.878%-Fix
CVE-2017-9101Critical9.877%--
CVE-2021-21346Medium6.176%-Fix
CVE-2023-4220High8.176%--
CVE-2021-21344Medium5.376%-Fix
CVE-2023-3486High8.276%-Fix
CVE-2019-10267High8.876%-Fix
CVE-2017-11357Critical9.876%KEV + RansomFix
CVE-2013-0803Critical9.875%--
CVE-2013-7390Critical9.875%--
CVE-2018-20526Critical9.874%--
CVE-2021-37926Critical9.874%-Fix
CVE-2021-37918Critical9.874%-Fix
CVE-2015-8249Critical9.874%--
CVE-2023-3836Medium6.374%--
CVE-2023-2034High8.873%-Fix
CVE-2023-38836High8.873%--
CVE-2020-27386High8.873%-Fix
CVE-2025-34299Critical9.873%--
CVE-2020-29597Critical9.872%--
CVE-2024-0352High7.371%--
CVE-2020-19364High8.871%--
CVE-2019-7257Critical10.070%--
CVE-2021-34995High8.869%--
CVE-2021-40324High7.569%-Fix
CVE-2019-7816Critical9.868%--
CVE-2021-40344High7.266%--
CVE-2022-0415High8.865%-Fix
CVE-2024-29848High7.264%-Fix
CVE-2018-19422High7.264%--
CVE-2020-28328High8.864%-Fix
CVE-2019-8394Medium6.564%KEVFix
CVE-2017-18048High8.864%--
CVE-2023-51409Critical10.063%-Fix
CVE-2023-38095High8.862%-Fix
CVE-2017-9080High8.862%--
CVE-2017-1000119High7.261%--
CVE-2023-27179High7.561%--
CVE-2021-24499Critical9.860%-Fix
CVE-2021-30118Critical9.860%-Fix
CVE-2023-0587Critical9.160%--
CVE-2021-42342Critical9.859%-Fix
CVE-2021-43829High7.459%-Fix
CVE-2025-2748Medium6.159%--
CVE-2021-42840High8.859%-Fix
CVE-2021-34427Critical9.858%--
CVE-2015-4553High8.857%--
CVE-2021-25003Critical9.856%-Fix
CVE-2011-4908Critical9.856%-Fix
CVE-2021-39352High7.256%--
CVE-2022-25487Critical9.855%--
CVE-2021-3277High7.255%--
CVE-2024-24809High8.554%--
CVE-2021-36356Critical9.854%--
CVE-2026-0740Critical9.854%--
CVE-2019-11447High8.853%--
CVE-2020-12255High8.853%--
CVE-2023-6187High7.552%--
CVE-2024-5084Critical9.851%-Fix
CVE-2025-26319Critical9.851%--

Showing the top 100 of 4,140. Browse all 4,140 in the lookup tool.