Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-07 | CVE-2020-29597 | Unrestricted Upload of File with Dangerous Type vulnerability in Incomcms Project Incomcms 2.0 IncomCMS 2.0 has a modules/uploader/showcase/script.php insecure file upload vulnerability. | 9.8 |
| 2020-12-03 | CVE-2020-28939 | Unrestricted Upload of File with Dangerous Type vulnerability in Openclinic Project Openclinic 0.8.2 OpenClinic version 0.8.2 is affected by a medical/test_new.php insecure file upload vulnerability. | 7.2 |
| 2020-11-30 | CVE-2020-29441 | Unrestricted Upload of File with Dangerous Type vulnerability in Outsystems 10 An issue was discovered in the Upload Widget in OutSystems Platform 10 before 10.0.1019.0. | 6.5 |
| 2020-11-30 | CVE-2020-25537 | Unrestricted Upload of File with Dangerous Type vulnerability in Ucms Project Ucms 1.5.0 File upload vulnerability exists in UCMS 1.5.0, and the attacker can take advantage of this vulnerability to obtain server management permission. | 9.8 |
| 2020-11-20 | CVE-2020-13671 | Unrestricted Upload of File with Dangerous Type vulnerability in multiple products Drupal core does not properly sanitize certain filenames on uploaded files, which can lead to files being interpreted as the incorrect extension and served as the wrong MIME type or executed as PHP for certain hosting configurations. | 8.8 |
| 2020-11-18 | CVE-2020-25406 | Unrestricted Upload of File with Dangerous Type vulnerability in Lemocms app\admin\controller\sys\Uploads.php in lemocms 1.8.x allows users to upload files to upload executable files. | 7.3 |
| 2020-11-17 | CVE-2020-28130 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Library Management System Project Online Library Management System 1.0 An Arbitrary File Upload in the Upload Image component in SourceCodester Online Library Management System 1.0 allows the user to conduct remote code execution via admin/borrower/index.php?view=add because .php files can be uploaded to admin/borrower/photos (under the web root). | 9.8 |
| 2020-11-17 | CVE-2020-26553 | Unrestricted Upload of File with Dangerous Type vulnerability in Aviatrix Controller 5.3.1516 An issue was discovered in Aviatrix Controller before R6.0.2483. | 9.8 |
| 2020-11-17 | CVE-2020-28136 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul Tourism Management System 1.0 An Arbitrary File Upload is discovered in SourceCodester Tourism Management System 1.0 allows the user to conduct remote code execution via admin/create-package.php vulnerable page. | 8.8 |
| 2020-11-17 | CVE-2020-28140 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Clothing Store Project Online Clothing Store 1.0 SourceCodester Online Clothing Store 1.0 is affected by an arbitrary file upload via the image upload feature of Products.php. | 9.8 |