VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Unrestricted Upload of File with Dangerous Type
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2025-05-28
CVE-2025-5299
A vulnerability was found in SourceCodester Client Database Management System 1.0.
network
low complexity
CWE-434
7.3
7.3
2025-05-28
CVE-2025-4800
The MasterStudy LMS Pro plugin for WordPress is vulnerable to arbitrary file uploads due to a missing file type validation in the stm_lms_add_assignment_attachment function in all versions up to, and including, 4.7.0.
network
low complexity
CWE-434
8.8
8.8
2025-05-26
CVE-2025-5178
A vulnerability classified as critical has been found in Realce Tecnologia Queue Ticket Kiosk up to 20250517.
network
low complexity
CWE-434
6.3
6.3
2025-05-26
CVE-2025-5171
A vulnerability, which was classified as critical, has been found in llisoft MTA Maita Training System 4.5.
network
low complexity
CWE-434
6.3
6.3
2025-05-26
CVE-2025-5162
A vulnerability, which was classified as critical, has been found in H3C SecCenter SMP-E1114P02 up to 20250513.
network
low complexity
CWE-434
6.3
6.3
2025-05-24
CVE-2025-4336
The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_file() function in all versions up to, and including, 1.2.5.
network
high complexity
CWE-434
8.1
8.1
2025-05-24
CVE-2025-5058
The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_image() function in all versions up to, and including, 1.2.5.
network
low complexity
CWE-434
critical
9.8
9.8
2025-05-22
CVE-2024-9544
The MapSVG plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 8.6.4 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-434
6.4
6.4
2025-05-21
CVE-2025-5059
Unrestricted Upload of File with Dangerous Type vulnerability in Campcodes Online Shopping Portal 1.0
A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0.
network
low complexity
campcodes
CWE-434
7.2
7.2
2025-05-19
CVE-2025-4926
Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul CAR Rental Portal 1.0
A vulnerability was found in PHPGurukul Car Rental Project 1.0 and classified as critical.
network
low complexity
phpgurukul
CWE-434
7.2
7.2
«
1
(current)
2
3
4
5
...
208
209
»
Next