Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2022-01-19 CVE-2021-45808 Unrestricted Upload of File with Dangerous Type vulnerability in Jpress 4.2.0
jpress v4.2.0 allows users to register an account by default.
network
low complexity
jpress CWE-434
6.5
2022-01-18 CVE-2021-46013 Unrestricted Upload of File with Dangerous Type vulnerability in Free School Management Software Project Free School Management Software 1.0
An unrestricted file upload vulnerability exists in Sourcecodester Free school management software 1.0.
7.5
2022-01-18 CVE-2022-0263 Unrestricted Upload of File with Dangerous Type vulnerability in Pimcore
Unrestricted Upload of File with Dangerous Type in Packagist pimcore/pimcore prior to 10.2.7.
local
low complexity
pimcore CWE-434
4.6
2022-01-17 CVE-2022-0242 Unrestricted Upload of File with Dangerous Type vulnerability in Craterapp Crater
Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0.
network
craterapp CWE-434
6.0
2022-01-15 CVE-2021-33828 Unrestricted Upload of File with Dangerous Type vulnerability in Owncloud Files Antivirus
The files_antivirus component before 1.0.0 for ownCloud mishandles the protection mechanism by which malicious files (that have been uploaded to a public share) are supposed to be deleted upon detection.
network
low complexity
owncloud CWE-434
6.5
2022-01-13 CVE-2021-34995 Unrestricted Upload of File with Dangerous Type vulnerability in Commvault Commcell 11.22.22
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22.
network
low complexity
commvault CWE-434
6.5
2022-01-13 CVE-2021-34997 Unrestricted Upload of File with Dangerous Type vulnerability in Commvault Commcell 11.22.22
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22.
network
low complexity
commvault CWE-434
6.5
2022-01-12 CVE-2021-45411 Unrestricted Upload of File with Dangerous Type vulnerability in Printable Staff ID Card Creator System Project Printable Staff ID Card Creator System 1.0
In Sourcecodetester Printable Staff ID Card Creator System 1.0 after compromising the database via SQLi, an attacker can log in and leverage an arbitrary file upload vulnerability to obtain remote code execution.
7.5
2022-01-12 CVE-2021-44651 Unrestricted Upload of File with Dangerous Type vulnerability in Zohocorp Log360 and Manageengine Cloud Security Plus
Zoho ManageEngine CloudSecurityPlus before Build 4117 allows remote code execution through the updatePersonalizeSettings component due to an improper security patch for CVE-2021-40175.
network
low complexity
zohocorp CWE-434
6.5
2022-01-12 CVE-2021-4080 Unrestricted Upload of File with Dangerous Type vulnerability in Craterapp Crater
crater is vulnerable to Unrestricted Upload of File with Dangerous Type
network
low complexity
craterapp CWE-434
6.5