Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-09 | CVE-2018-19126 | Unrestricted Upload of File with Dangerous Type vulnerability in Prestashop PrestaShop 1.6.x before 1.6.1.23 and 1.7.x before 1.7.4.4 allows remote attackers to execute arbitrary code via a file upload. | 9.8 |
| 2018-11-05 | CVE-2018-9208 | Unrestricted Upload of File with Dangerous Type vulnerability in Tuyoshi Jquery Picture CUT 1.1 Unauthenticated arbitrary file upload vulnerability in jQuery Picture Cut <= v1.1Beta | 9.8 |
| 2018-11-05 | CVE-2018-18942 | Unrestricted Upload of File with Dangerous Type vulnerability in Basercms In baserCMS before 4.1.4, lib\Baser\Model\ThemeConfig.php allows remote attackers to execute arbitrary PHP code via the admin/theme_configs/form data[ThemeConfig][logo] parameter. | 7.2 |
| 2018-11-05 | CVE-2018-18934 | Unrestricted Upload of File with Dangerous Type vulnerability in Popojicms 2.0.1 An issue was discovered in PopojiCMS v2.0.1. | 9.8 |
| 2018-11-02 | CVE-2018-1552 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Robotic Process Automation With Automation Anywhere 10/11 IBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 allows a remote attacker to execute arbitrary code on the system, caused by a missing restriction in which file types can be uploaded to the control room. | 8.8 |
| 2018-11-01 | CVE-2018-18888 | Unrestricted Upload of File with Dangerous Type vulnerability in Laravelcms Project Laravelcms 20170525/20180402 An issue was discovered in laravelCMS through 2018-04-02. | 9.8 |
| 2018-10-31 | CVE-2018-18874 | Unrestricted Upload of File with Dangerous Type vulnerability in Nconsulting Nc-Cms nc-cms through 2017-03-10 allows remote attackers to execute arbitrary PHP code via the "Upload File or Image" feature, with a .php filename and "Content-Type: application/octet-stream" to the index.php?action=file_manager_upload URI. | 9.8 |
| 2018-10-30 | CVE-2018-18830 | Unrestricted Upload of File with Dangerous Type vulnerability in Mingsoft Mcms 4.6.5 An issue was discovered in com\mingsoft\basic\action\web\FileAction.java in MCMS 4.6.5. | 9.8 |
| 2018-10-29 | CVE-2018-18771 | Unrestricted Upload of File with Dangerous Type vulnerability in Lulucms Lulu CMS 20150514 An issue was discovered in LuLu CMS through 2015-05-14. | 7.5 |
| 2018-10-29 | CVE-2018-18752 | Unrestricted Upload of File with Dangerous Type vulnerability in Webiness Project Webiness Inventory 2.3 Webiness Inventory 2.3 suffers from an Arbitrary File upload vulnerability via PHP code in the protected/library/ajax/WsSaveToModel.php logo parameter. | 9.8 |