Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-15 | CVE-2023-50729 | Unrestricted Upload of File with Dangerous Type vulnerability in Traccar Traccar is an open source GPS tracking system. | 9.8 |
| 2024-01-13 | CVE-2024-0505 | Unrestricted Upload of File with Dangerous Type vulnerability in Zhongfucheng3Y Austin 1.0 A vulnerability was found in ZhongFuCheng3y Austin 1.0 and classified as critical. | 9.8 |
| 2024-01-12 | CVE-2024-0468 | Unrestricted Upload of File with Dangerous Type vulnerability in Code-Projects Fighting Cock Information System 1.0 A vulnerability has been found in code-projects Fighting Cock Information System 1.0 and classified as critical. | 9.8 |
| 2024-01-12 | CVE-2023-51806 | Unrestricted Upload of File with Dangerous Type vulnerability in Ujcms 8.0.2 File Upload vulnerability in Ujcms v.8.0.2 allows a local attacker to execute arbitrary code via a crafted file. | 5.4 |
| 2024-01-11 | CVE-2023-46474 | Unrestricted Upload of File with Dangerous Type vulnerability in Sigb PMB File Upload vulnerability PMB v.7.4.8 allows a remote attacker to execute arbitrary code and escalate privileges via a crafted PHP file uploaded to the start_import.php file. | 7.2 |
| 2024-01-11 | CVE-2023-6220 | Unrestricted Upload of File with Dangerous Type vulnerability in Piotnet Forms The Piotnet Forms plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'piotnetforms_ajax_form_builder' function in versions up to, and including, 1.0.26. | 9.8 |
| 2024-01-11 | CVE-2023-6316 | Unrestricted Upload of File with Dangerous Type vulnerability in MW WP Form Project MW WP Form 4.4.2 The MW WP Form plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the '_single_file_upload' function in versions up to, and including, 5.0.1. | 9.8 |
| 2024-01-11 | CVE-2023-6558 | Unrestricted Upload of File with Dangerous Type vulnerability in Webtoffee Import Export Wordpress Users The Export and Import Users and Customers plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'upload_import_file' function in versions up to, and including, 2.4.8. | 7.2 |
| 2024-01-11 | CVE-2023-6636 | Unrestricted Upload of File with Dangerous Type vulnerability in Greenshiftwp Greenshift - Animation and Page Builder Blocks The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation on the 'gspb_save_files' function in versions up to, and including, 7.6.2. | 7.2 |
| 2024-01-11 | CVE-2023-6979 | Unrestricted Upload of File with Dangerous Type vulnerability in Cusrev Customer Reviews for Woocommerce The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ivole_import_upload_csv AJAX action in all versions up to, and including, 5.38.9. | 8.8 |