Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-02-15 | CVE-2019-0259 | Unrestricted Upload of File with Dangerous Type vulnerability in SAP Businessobjects 4.2/4.3 SAP BusinessObjects, versions 4.2 and 4.3, (Visual Difference) allows an attacker to upload any file (including script files) without proper file format validation. | 9.8 |
| 2019-02-11 | CVE-2019-7721 | Unrestricted Upload of File with Dangerous Type vulnerability in Nconsulting Nc-Cms 3.5 lib/NCCms.class.php in nc-cms 3.5 allows upload of .php files via the index.php?action=save name and editordata parameters. | 7.5 |
| 2019-02-09 | CVE-2019-7684 | Unrestricted Upload of File with Dangerous Type vulnerability in Inxedu 2.0.6/20181224 inxedu through 2018-12-24 has a vulnerability that can lead to the upload of a malicious JSP file. | 9.8 |
| 2019-02-07 | CVE-2019-6139 | Unrestricted Upload of File with Dangerous Type vulnerability in Forcepoint User ID 1.1/1.2 Forcepoint User ID (FUID) server versions up to 1.2 have a remote arbitrary file upload vulnerability on TCP port 5001. | 9.8 |
| 2019-01-15 | CVE-2019-0017 | Unrestricted Upload of File with Dangerous Type vulnerability in Juniper Junos Space The Junos Space application, which allows Device Image files to be uploaded, has insufficient validity checking which may allow uploading of malicious images or scripts, or other content types. | 8.8 |
| 2019-01-14 | CVE-2018-1969 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Security Identity Manager IBM Security Identity Manager 6.0.0 allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. | 9.9 |
| 2019-01-09 | CVE-2018-16169 | Unrestricted Upload of File with Dangerous Type vulnerability in Cybozu Remote Service Manager 3.0.0/3.0.1/3.1.0 Cybozu Remote Service 3.0.0 to 3.1.0 allows remote authenticated attackers to upload and execute Java code file on the server via unspecified vectors. | 8.8 |
| 2019-01-04 | CVE-2019-5009 | Unrestricted Upload of File with Dangerous Type vulnerability in Vtiger CRM Vtiger CRM 7.1.0 before Hotfix2 allows uploading files with the extension "php3" in the logo upload field, if the uploaded file is in PNG format and has a size of 150x40. | 7.2 |
| 2019-01-02 | CVE-2018-20166 | Unrestricted Upload of File with Dangerous Type vulnerability in Rukovoditel 2.3.1 A file-upload vulnerability exists in Rukovoditel 2.3.1. | 8.8 |
| 2018-12-28 | CVE-2018-5204 | Unrestricted Upload of File with Dangerous Type vulnerability in Infraware-Global ML Report 2.00.000.0000/2.18.628.5980 ML Report version Between 2.00.000.0000 and 2.18.628.5980 contains a vulnerability that could allow remote attacker to download and execute remote arbitrary file by setting the arguments to the activex method. | 9.8 |