Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-14 | CVE-2024-11214 | Unrestricted Upload of File with Dangerous Type vulnerability in Mayurik Best Employee Management System 1.0 A vulnerability has been found in SourceCodester Best Employee Management System 1.0 and classified as critical. | 7.2 |
| 2024-11-14 | CVE-2024-11211 | Unrestricted Upload of File with Dangerous Type vulnerability in Eyoucms A vulnerability classified as critical has been found in EyouCMS up to 1.6.7. | 7.2 |
| 2024-11-13 | CVE-2024-10820 | Unrestricted Upload of File with Dangerous Type vulnerability in Vanquish Woocommerce Upload Files The WooCommerce Upload Files plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the upload_files() function in all versions up to, and including, 84.3. | 9.8 |
| 2024-11-11 | CVE-2024-11017 | Unrestricted Upload of File with Dangerous Type vulnerability in Vice Webopac 7.1.20160701 Webopac from Grand Vice info does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload and execute webshells, which could lead to arbitrary code execution on the server. | 8.8 |
| 2024-11-11 | CVE-2024-11018 | Unrestricted Upload of File with Dangerous Type vulnerability in Vice Webopac 7.1.20160701 Webopac from Grand Vice info does not properly validate uploaded file types, allowing unauthenticated remote attackers to upload and execute webshells, which could lead to arbitrary code execution on the server. | 9.8 |
| 2024-11-11 | CVE-2024-51793 | Unrestricted Upload of File with Dangerous Type vulnerability in Webfulcreations Computer Repair Shop Unrestricted Upload of File with Dangerous Type vulnerability in Webful Creations Computer Repair Shop allows Upload a Web Shell to a Web Server.This issue affects Computer Repair Shop: from n/a through 3.8115. | 9.8 |
| 2024-11-10 | CVE-2024-11054 | Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Simple Music Cloud Community System 1.0 A vulnerability classified as critical was found in SourceCodester Simple Music Cloud Community System 1.0. | 9.8 |
| 2024-11-09 | CVE-2024-10547 | The WP Membership plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the user_profile_image_upload() function in all versions up to, and including, 1.6.2. | 9.8 |
| 2024-11-09 | CVE-2024-10627 | The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_manage_file_chunk_upload() function in all versions up to, and including, 17.7. | 9.8 |
| 2024-11-08 | CVE-2024-51152 | Unrestricted Upload of File with Dangerous Type vulnerability in Alexstack Laravel CMS File Upload vulnerability in Laravel CMS v.1.4.7 and before allows a remote attacker to execute arbitrary code via the shell.php a component. | 7.2 |