Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2022-06-24 CVE-2021-38945 Unrestricted Upload of File with Dangerous Type vulnerability in IBM Cognos Analytics
IBM Cognos Analytics 11.2.1, 11.2.0, and 11.1.7 could allow a remote attacker to upload arbitrary files, caused by improper content validation.
network
low complexity
ibm CWE-434
7.5
2022-06-24 CVE-2022-1519 Unrestricted Upload of File with Dangerous Type vulnerability in Illumina Local RUN Manager
LRM does not restrict the types of files that can be uploaded to the affected product.
network
low complexity
illumina CWE-434
critical
10.0
2022-06-23 CVE-2021-40954 Unrestricted Upload of File with Dangerous Type vulnerability in Laiketui 3.5.0
Laiketui 3.5.0 is affected by an arbitrary file upload vulnerability that can allow an attacker to execute arbitrary code.
network
low complexity
laiketui CWE-434
7.5
2022-06-23 CVE-2022-31362 Unrestricted Upload of File with Dangerous Type vulnerability in Docebo
** UNSUPPORTED WHEN ASSIGNED ** Docebo Community Edition v4.0.5 and below was discovered to contain an arbitrary file upload vulnerability.
network
low complexity
docebo CWE-434
6.5
2022-06-21 CVE-2022-31374 Unrestricted Upload of File with Dangerous Type vulnerability in Contec Sv-Cpt-Mc310 Firmware 6.0
An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file.
network
low complexity
contec CWE-434
7.5
2022-06-20 CVE-2022-2128 Unrestricted Upload of File with Dangerous Type vulnerability in Trudesk Project Trudesk
Unrestricted Upload of File with Dangerous Type in GitHub repository polonel/trudesk prior to 1.2.4.
network
low complexity
trudesk-project CWE-434
7.5
2022-06-20 CVE-2022-1939 Unrestricted Upload of File with Dangerous Type vulnerability in Allow SVG Files Project Allow SVG Files
The Allow svg files WordPress plugin before 1.1 does not properly validate uploaded files, which could allow high privilege users such as admin to upload PHP files even when they are not allowed to
network
low complexity
allow-svg-files-project CWE-434
6.5
2022-06-20 CVE-2017-20063 Unrestricted Upload of File with Dangerous Type vulnerability in Elefantcms Elefant CMS 1.3.12
A vulnerability was found in Elefant CMS 1.3.12-RC.
network
low complexity
elefantcms CWE-434
6.5
2022-06-17 CVE-2022-2111 Unrestricted Upload of File with Dangerous Type vulnerability in Inventree
Unrestricted Upload of File with Dangerous Type in GitHub repository inventree/inventree prior to 0.7.2.
network
low complexity
inventree CWE-434
6.5
2022-06-15 CVE-2022-32433 Unrestricted Upload of File with Dangerous Type vulnerability in Advanced School Management System Project Advanced School Management System 1.0
itsourcecode Advanced School Management System v1.0 is vulnerable to Arbitrary code execution via ip/school/view/all_teacher.php.
6.5