Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-21 | CVE-2018-11331 | Unrestricted Upload of File with Dangerous Type vulnerability in Pluck-Cms Pluck An issue was discovered in Pluck before 4.7.6. | 9.8 |
| 2018-05-19 | CVE-2018-4921 | Unrestricted Upload of File with Dangerous Type vulnerability in Adobe Connect Adobe Connect versions 9.7 and earlier have an exploitable unrestricted SWF file upload vulnerability. | 6.1 |
| 2018-05-16 | CVE-2018-10760 | Unrestricted Upload of File with Dangerous Type vulnerability in Projectpier Unrestricted file upload vulnerability in the Files plugin in ProjectPier 0.88 and earlier allows remote authenticated users to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the file in the tmp directory under the document root. | 8.8 |
| 2018-05-15 | CVE-2018-7505 | Unrestricted Upload of File with Dangerous Type vulnerability in Advantech products In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, a TFTP application has unrestricted file uploads to the web application without authorization, which may allow an attacker to execute arbitrary code. | 9.8 |
| 2018-05-15 | CVE-2018-11098 | Unrestricted Upload of File with Dangerous Type vulnerability in Frog CMS Project Frog CMS 0.9.5 An issue was discovered in Frog CMS 0.9.5. | 7.2 |
| 2018-05-14 | CVE-2018-11091 | Unrestricted Upload of File with Dangerous Type vulnerability in Mybiz Myprocurenet 5.0.0 An issue was discovered in MyBiz MyProcureNet 5.0.0. | 9.9 |
| 2018-05-14 | CVE-2018-0587 | Unrestricted Upload of File with Dangerous Type vulnerability in Ultimatemember User Profile & Membership Unrestricted file upload vulnerability in Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote authenticated users to upload arbitrary image files via unspecified vectors. | 4.3 |
| 2018-05-14 | CVE-2018-0568 | Unrestricted Upload of File with Dangerous Type vulnerability in Sitebridge Joruri GW Unrestricted file upload vulnerability in SiteBridge Inc. | 8.8 |
| 2018-05-10 | CVE-2018-10942 | Unrestricted Upload of File with Dangerous Type vulnerability in Attribute Wizard Project Attribute Wizard 1.6.9 modules/attributewizardpro/file_upload.php in the Attribute Wizard addon 1.6.9 for PrestaShop 1.4.0.1 through 1.6.1.18 allows remote attackers to execute arbitrary code by uploading a .phtml file. | 9.8 |
| 2018-05-09 | CVE-2018-2420 | Unrestricted Upload of File with Dangerous Type vulnerability in SAP Internet Graphics Server SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to upload any file (including script files) without proper file format validation. | 9.8 |