Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-03 | CVE-2021-36622 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Covid Vaccination Scheduler System Project Online Covid Vaccination Scheduler System 1.0 Sourcecodester Online Covid Vaccination Scheduler System 1.0 is affected vulnerable to Arbitrary File Upload. | 9.8 |
| 2021-08-03 | CVE-2021-36623 | Unrestricted Upload of File with Dangerous Type vulnerability in Phone Shop Sales Management System Project Phone Shop Sales Management System 1.0 Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE. | 9.8 |
| 2021-07-30 | CVE-2021-25200 | Unrestricted Upload of File with Dangerous Type vulnerability in Learning Management System Project Learning Management System 1.0 Arbitrary file upload vulnerability in SourceCodester Learning Management System v 1.0 allows attackers to execute arbitrary code, via the file upload to \lms\student_avatar.php. | 9.8 |
| 2021-07-29 | CVE-2021-36741 | Unrestricted Upload of File with Dangerous Type vulnerability in Trendmicro products An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG, and Worry-Free Business Security 10.0 SP1 allows a remote attached to upload arbitrary files on affected installations. | 8.8 |
| 2021-07-25 | CVE-2021-37444 | Unrestricted Upload of File with Dangerous Type vulnerability in Nchsoftware IVM Attendant 5.12 NCH IVM Attendant v5.12 and earlier suffers from a directory traversal weakness upon uploading plugins in a ZIP archive. | 8.8 |
| 2021-07-23 | CVE-2021-25203 | Unrestricted Upload of File with Dangerous Type vulnerability in Victor CMS Project Victor CMS 1.0 Arbitrary file upload vulnerability in Victor CMS v 1.0 allows attackers to execute arbitrary code via the file upload to \CMSsite-master\admin\includes\admin_add_post.php. | 9.8 |
| 2021-07-23 | CVE-2021-25206 | Unrestricted Upload of File with Dangerous Type vulnerability in Responsive Ordering System Project Responsive Ordering System 1.0 Arbitrary file upload vulnerability in SourceCodester Responsive Ordering System v 1.0 allows attackers to execute arbitrary code via the file upload to Product_model.php. | 9.8 |
| 2021-07-23 | CVE-2021-25208 | Unrestricted Upload of File with Dangerous Type vulnerability in Travel Management System Project Travel Management System 1.0 Arbitrary file upload vulnerability in SourceCodester Travel Management System v 1.0 allows attackers to execute arbitrary code via the file upload to updatepackage.php. | 9.8 |
| 2021-07-23 | CVE-2021-25207 | Unrestricted Upload of File with Dangerous Type vulnerability in E-Commerce Website Project E-Commerce Website 1.0 Arbitrary file upload vulnerability in SourceCodester E-Commerce Website v 1.0 allows attackers to execute arbitrary code via the file upload to prodViewUpdate.php. | 9.8 |
| 2021-07-22 | CVE-2021-25211 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Ordering System Project Online Ordering System 1.0 Arbitrary file upload vulnerability in SourceCodester Ordering System v 1.0 allows attackers to execute arbitrary code, via the file upload to ordering\admin\products\edit.php. | 9.8 |