Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-03-05 | CVE-2018-7665 | Unrestricted Upload of File with Dangerous Type vulnerability in Clip-Bucket Clipbucket An issue was discovered in ClipBucket before 4.0.0 Release 4902. | 9.8 |
| 2018-03-04 | CVE-2018-7567 | Unrestricted Upload of File with Dangerous Type vulnerability in Otrs In the Admin Package Manager in Open Ticket Request System (OTRS) 5.0.0 through 5.0.24 and 6.0.0 through 6.0.1, authenticated admins are able to exploit a Blind Remote Code Execution vulnerability by loading a crafted opm file with an embedded CodeInstall element to execute a command on the server during package installation. | 7.2 |
| 2018-03-01 | CVE-2017-6931 | Unrestricted Upload of File with Dangerous Type vulnerability in Drupal In Drupal versions 8.4.x versions before 8.4.5 the Settings Tray module has a vulnerability that allows users to update certain data that they do not have the permissions for. | 6.5 |
| 2018-02-22 | CVE-2018-7316 | Unrestricted Upload of File with Dangerous Type vulnerability in Christianwebministries Proclaim 9.1.1 Arbitrary File Upload exists in the Proclaim 9.1.1 component for Joomla! via a mediafileform action. | 9.8 |
| 2018-02-18 | CVE-2018-7217 | Unrestricted Upload of File with Dangerous Type vulnerability in Tejari Bravo Solution In Bravo Tejari Procurement Portal, uploaded files are not properly validated by the application either on the client or the server side. | 8.8 |
| 2018-02-15 | CVE-2016-8515 | Unrestricted Upload of File with Dangerous Type vulnerability in HP Version Control Repository Manager A remote malicious file upload vulnerability in HPE Version Control Repository Manager (VCRM) was found. | 8.8 |
| 2018-02-14 | CVE-2017-1499 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM products IBM Maximo Asset Management 7.5 and 7.6 could allow a remote attacker to include arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable Web server. | 8.8 |
| 2018-02-12 | CVE-2017-9970 | Unrestricted Upload of File with Dangerous Type vulnerability in Schneider-Electric Struxureon Gateway 1.1.3 A remote code execution vulnerability exists in Schneider Electric's StruxureOn Gateway versions 1.1.3 and prior. | 7.2 |
| 2018-02-12 | CVE-2018-6860 | Unrestricted Upload of File with Dangerous Type vulnerability in Schools Alert Management Script Project Schools Alert Management Script 2.0.2 Arbitrary File Upload and Remote Code Execution exist in PHP Scripts Mall Schools Alert Management Script 2.0.2 via a profile picture. | 8.8 |
| 2018-02-02 | CVE-2018-6580 | Unrestricted Upload of File with Dangerous Type vulnerability in Janguo Jimtawl 2.1.6/2.2.5 Arbitrary file upload exists in the Jimtawl 2.1.6 and 2.2.5 component for Joomla! via a view=upload&task=upload&pop=true&tmpl=component request. | 9.8 |