Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-03 | CVE-2014-8337 | Unrestricted Upload of File with Dangerous Type vulnerability in Helpdezk Unrestricted file upload vulnerability in includes/classes/uploadify-v2.1.4/uploadify.php in HelpDEZk 1.0.1 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the directory specified by the folder parameter. | 9.8 |
| 2019-12-30 | CVE-2019-16790 | Unrestricted Upload of File with Dangerous Type vulnerability in Tiny File Manager Project Tiny File Manager In Tiny File Manager before 2.3.9, there is a remote code execution via Upload from URL and Edit/Rename files. | 8.8 |
| 2019-12-27 | CVE-2019-20048 | Unrestricted Upload of File with Dangerous Type vulnerability in Al-Enterprise Omnivista 8770 An issue was discovered on Alcatel-Lucent OmniVista 8770 devices before 4.1.2. | 7.2 |
| 2019-12-27 | CVE-2013-4796 | Unrestricted Upload of File with Dangerous Type vulnerability in Reviewboard 1.6.17 ReviewBoard 1.6.17 allows code execution by attaching PHP scripts to review request | 8.8 |
| 2019-12-24 | CVE-2019-19925 | Unrestricted Upload of File with Dangerous Type vulnerability in multiple products zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname during an update of a ZIP archive. | 7.5 |
| 2019-12-23 | CVE-2019-8293 | Unrestricted Upload of File with Dangerous Type vulnerability in Abcprintf Upload-Image-With-Ajax 1.0 Due to a logic error in the code, upload-image-with-ajax v1.0 allows arbitrary files to be uploaded to the web root allowing code execution. | 9.8 |
| 2019-12-17 | CVE-2019-19634 | Unrestricted Upload of File with Dangerous Type vulnerability in multiple products class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension for Joomla! and other products, omits .pht from the set of dangerous file extensions, a similar issue to CVE-2019-19576. | 9.8 |
| 2019-12-17 | CVE-2019-19745 | Unrestricted Upload of File with Dangerous Type vulnerability in Contao Contao 4.0 through 4.8.5 allows PHP local file inclusion. | 8.8 |
| 2019-12-12 | CVE-2019-18320 | Unrestricted Upload of File with Dangerous Type vulnerability in Siemens Sppa-T3000 Application Server R8.2 A vulnerability has been identified in SPPA-T3000 Application Server (All versions < Service Pack R8.2 SP2). | 7.5 |
| 2019-12-12 | CVE-2019-18313 | Unrestricted Upload of File with Dangerous Type vulnerability in Siemens Sppa-T3000 Ms3000 Migration Server A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). | 9.8 |