Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-06 | CVE-2024-1260 | Unrestricted Upload of File with Dangerous Type vulnerability in Juanpao Jpshop 1.5.02 A vulnerability classified as critical has been found in Juanpao JPShop up to 1.5.02. | 9.8 |
| 2024-02-06 | CVE-2024-1261 | Unrestricted Upload of File with Dangerous Type vulnerability in Juanpao Jpshop 1.5.02 A vulnerability classified as critical was found in Juanpao JPShop up to 1.5.02. | 9.8 |
| 2024-02-06 | CVE-2024-22515 | Unrestricted Upload of File with Dangerous Type vulnerability in Ispyconnect Agent DVR 5.1.6.0 Unrestricted File Upload vulnerability in iSpyConnect.com Agent DVR 5.1.6.0 allows attackers to upload arbitrary files via the upload audio component. | 8.8 |
| 2024-02-06 | CVE-2024-24000 | Unrestricted Upload of File with Dangerous Type vulnerability in Huaxiaerp Jsherp 3.3 jshERP v3.3 is vulnerable to Arbitrary File Upload. | 9.8 |
| 2024-02-05 | CVE-2024-0699 | Unrestricted Upload of File with Dangerous Type vulnerability in Meowapps AI Engine The AI Engine: Chatbots, Generators, Assistants, GPT 4 and more! plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'add_image_from_url' function in all versions up to, and including, 2.1.4. | 7.2 |
| 2024-02-05 | CVE-2023-6635 | Unrestricted Upload of File with Dangerous Type vulnerability in Extendify Editorskit The EditorsKit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation on the 'import_styles' function in versions up to, and including, 1.40.3. | 7.2 |
| 2024-02-05 | CVE-2023-6846 | Unrestricted Upload of File with Dangerous Type vulnerability in Filemanagerpro File Manager The File Manager Pro plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 8.3.4 via the mk_check_filemanager_php_syntax AJAX function. | 8.8 |
| 2024-02-05 | CVE-2023-6925 | Unrestricted Upload of File with Dangerous Type vulnerability in Unitecms Unlimited Addons for Wpbakery Page Builder The Unlimited Addons for WPBakery Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'importZipFile' function in versions up to, and including, 1.0.42. | 7.2 |
| 2024-02-05 | CVE-2024-22567 | Unrestricted Upload of File with Dangerous Type vulnerability in Mingsoft Mcms 5.3.5 File Upload vulnerability in MCMS 5.3.5 allows attackers to upload arbitrary files via crafted POST request to /ms/file/upload.do. | 8.8 |
| 2024-02-05 | CVE-2021-4436 | Unrestricted Upload of File with Dangerous Type vulnerability in Wp3Dprinting 3Dprint Lite The 3DPrint Lite WordPress plugin before 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlite_handle_upload AJAX action , allowing unauthenticated users to upload arbitrary file to the web server. | 9.8 |