Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-16 | CVE-2019-16700 | Unrestricted Upload of File with Dangerous Type vulnerability in Slub-Dresden Slub Events The slub_events (aka SLUB: Event Registration) extension through 3.0.2 for TYPO3 allows uploading of arbitrary files to the webserver. | 9.8 |
| 2019-10-13 | CVE-2019-17536 | Unrestricted Upload of File with Dangerous Type vulnerability in Gilacms Gila CMS Gila CMS through 1.11.4 allows Unrestricted Upload of a File with a Dangerous Type via the moveAction function in core/controllers/fm.php. | 4.9 |
| 2019-10-10 | CVE-2019-17490 | Unrestricted Upload of File with Dangerous Type vulnerability in Jnoj Jiangnan Online Judge 0.8.0 app\modules\polygon\controllers\ProblemController in Jiangnan Online Judge (aka jnoj) 0.8.0 allows arbitrary file upload, as demonstrated by PHP code (with a .php filename but the image/png content type) to the web/polygon/problem/tests URI. | 8.8 |
| 2019-10-10 | CVE-2015-9479 | Unrestricted Upload of File with Dangerous Type vulnerability in Advancedcustomfields ACF Fronted Display The ACF-Frontend-Display plugin through 2015-07-03 for WordPress has arbitrary file upload via an action=upload request to js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php. | 9.8 |
| 2019-10-10 | CVE-2015-9471 | Unrestricted Upload of File with Dangerous Type vulnerability in Digitalzoomstudio Zoomsounds The dzs-zoomsounds plugin through 2.0 for WordPress has admin/upload.php arbitrary file upload. | 9.8 |
| 2019-10-08 | CVE-2018-21024 | Unrestricted Upload of File with Dangerous Type vulnerability in Centreon licenseUpload.php in Centreon Web before 2.8.27 allows attackers to upload arbitrary files via a POST request. | 9.8 |
| 2019-10-08 | CVE-2019-17352 | Unrestricted Upload of File with Dangerous Type vulnerability in Jfinal In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile() function: one can upload any type of file. | 7.5 |
| 2019-10-08 | CVE-2019-14657 | Unrestricted Upload of File with Dangerous Type vulnerability in Yeahlink T49G Firmware, T58V Firmware and Vp59 Firmware Yealink phones through 2019-08-04 have an issue with OpenVPN file upload. | 8.8 |
| 2019-10-08 | CVE-2019-14656 | Unrestricted Upload of File with Dangerous Type vulnerability in Yeahlink T49G Firmware, T58V Firmware and Vp59 Firmware Yealink phones through 2019-08-04 do not properly check user roles in POST requests. | 8.8 |
| 2019-10-07 | CVE-2019-15751 | Unrestricted Upload of File with Dangerous Type vulnerability in Sitos SIX 6.2.1 An unrestricted file upload vulnerability in SITOS six Build v6.2.1 allows remote attackers to execute arbitrary code by uploading a SCORM file with an executable extension. | 9.8 |