Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-07 | CVE-2019-15748 | Unrestricted Upload of File with Dangerous Type vulnerability in Sitos SIX 6.2.1 SITOS six Build v6.2.1 permits unauthorised users to upload and import a SCORM 2004 package by browsing directly to affected pages. | 9.8 |
| 2019-10-04 | CVE-2019-17188 | Unrestricted Upload of File with Dangerous Type vulnerability in Fecmall 2.3.4 An unrestricted file upload vulnerability was discovered in catalog/productinfo/imageupload in Fecshop FecMall 2.3.4. | 7.2 |
| 2019-10-04 | CVE-2019-11655 | Unrestricted Upload of File with Dangerous Type vulnerability in HP Arcsight Logger Unrestricted file upload vulnerability in Micro Focus ArcSight Logger, version 6.7.0 and later. | 8.8 |
| 2019-10-03 | CVE-2019-15766 | Unrestricted Upload of File with Dangerous Type vulnerability in Kslabs Ksweb 3.93 The KSLABS KSWEB (aka ru.kslabs.ksweb) application 3.93 for Android allows authenticated remote code execution via a POST request to the AJAX handler with the configFile parameter set to the arbitrary file to be written to (and the config_text parameter set to the content of the file to be created). | 8.8 |
| 2019-09-30 | CVE-2019-17046 | Unrestricted Upload of File with Dangerous Type vulnerability in Ilch CMS 2.1.22 Ilch 2.1.22 allows remote code execution because php is listed under "Allowed files" on the index.php/admin/media/settings/index page. | 7.2 |
| 2019-09-26 | CVE-2019-15862 | Unrestricted Upload of File with Dangerous Type vulnerability in Cksource Ckfinder An issue was discovered in CKFinder through 2.6.2.1. | 7.5 |
| 2019-09-23 | CVE-2019-16720 | Unrestricted Upload of File with Dangerous Type vulnerability in Zzzcms Zzzphp 1.7.2 ZZZCMS zzzphp v1.7.2 does not properly restrict file upload in plugins/ueditor/php/controller.php?upfolder=news&action=catchimage, as demonstrated by uploading a .htaccess or .php5 file. | 7.5 |
| 2019-09-20 | CVE-2015-9402 | Unrestricted Upload of File with Dangerous Type vulnerability in Usersultra Users Ultra Membership The users-ultra plugin before 1.5.59 for WordPress has uultra-form-cvs-form-conf arbitrary file upload. | 8.8 |
| 2019-09-20 | CVE-2019-14916 | Unrestricted Upload of File with Dangerous Type vulnerability in Prise Adas 1.7.0 An issue was discovered in PRiSE adAS 1.7.0. | 6.5 |
| 2019-09-18 | CVE-2019-14252 | Unrestricted Upload of File with Dangerous Type vulnerability in Publisure 2.1.2 An issue was discovered in the secure portal in Publisure 2.1.2. | 7.2 |