Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-17 | CVE-2021-32622 | Unrestricted Upload of File with Dangerous Type vulnerability in Matrix-React-Sdk Project Matrix-React-Sdk Matrix-React-SDK is a react-based SDK for inserting a Matrix chat/voip client into a web page. | 7.8 |
| 2021-05-14 | CVE-2020-18166 | Unrestricted Upload of File with Dangerous Type vulnerability in Laobancms 2.0 Unrestricted File Upload in LAOBANCMS v2.0 allows remote attackers to upload arbitrary files by attaching a file with a ".jpg.php" extension to the component "admin/wenjian.php?wj=../templets/pc". | 9.8 |
| 2021-05-13 | CVE-2020-20092 | Unrestricted Upload of File with Dangerous Type vulnerability in Articlecms Project Articlecms 1.0 File Upload vulnerability exists in ArticleCMS 1.0 via the image upload feature at /admin by changing the Content-Type to image/jpeg and placing PHP code after the JPEG data, which could let a remote malicious user execute arbitrary PHP code. | 9.8 |
| 2021-05-13 | CVE-2020-28063 | Unrestricted Upload of File with Dangerous Type vulnerability in Articlecms Project Articlecms A file upload issue exists in all versions of ArticleCMS which allows malicious users to getshell. | 9.8 |
| 2021-05-12 | CVE-2020-23790 | Unrestricted Upload of File with Dangerous Type vulnerability in Uxper Golo 1.1.5 An Arbitrary File Upload vulnerability was discovered in the Golo Laravel theme v 1.1.5. | 9.8 |
| 2021-05-11 | CVE-2021-32089 | Unrestricted Upload of File with Dangerous Type vulnerability in Zebra Fx9500 Firmware An issue was discovered on Zebra (formerly Motorola Solutions) Fixed RFID Reader FX9500 devices. | 9.8 |
| 2021-05-11 | CVE-2021-27618 | Unrestricted Upload of File with Dangerous Type vulnerability in SAP Netweaver Process Integration The Integration Builder Framework of SAP Process Integration versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not check the file type extension of the file uploaded from local source. | 4.9 |
| 2021-05-10 | CVE-2021-29022 | Unrestricted Upload of File with Dangerous Type vulnerability in Invoiceplane 1.5.11 In InvoicePlane 1.5.11, the upload feature discloses the full path of the file upload directory. | 5.3 |
| 2021-05-07 | CVE-2021-32094 | Unrestricted Upload of File with Dangerous Type vulnerability in NSA Emissary 5.9.0 U.S. | 8.8 |
| 2021-05-06 | CVE-2021-31737 | Unrestricted Upload of File with Dangerous Type vulnerability in Emlog 5.3.1/6.0.0 emlog v5.3.1 and emlog v6.0.0 have a Remote Code Execution vulnerability due to upload of database backup file in admin/data.php. | 9.8 |