Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-05 | CVE-2023-6846 | Unrestricted Upload of File with Dangerous Type vulnerability in Filemanagerpro File Manager The File Manager Pro plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 8.3.4 via the mk_check_filemanager_php_syntax AJAX function. | 8.8 |
| 2024-02-05 | CVE-2023-6925 | Unrestricted Upload of File with Dangerous Type vulnerability in Unitecms Unlimited Addons for Wpbakery Page Builder The Unlimited Addons for WPBakery Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'importZipFile' function in versions up to, and including, 1.0.42. | 7.2 |
| 2024-02-05 | CVE-2024-22567 | Unrestricted Upload of File with Dangerous Type vulnerability in Mingsoft Mcms 5.3.5 File Upload vulnerability in MCMS 5.3.5 allows attackers to upload arbitrary files via crafted POST request to /ms/file/upload.do. | 8.8 |
| 2024-02-05 | CVE-2021-4436 | Unrestricted Upload of File with Dangerous Type vulnerability in Wp3Dprinting 3Dprint Lite The 3DPrint Lite WordPress plugin before 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlite_handle_upload AJAX action , allowing unauthenticated users to upload arbitrary file to the web server. | 9.8 |
| 2024-02-02 | CVE-2023-6675 | Unrestricted Upload of File with Dangerous Type vulnerability in Nationalkeep Cybermath 1.4 Unrestricted Upload of File with Dangerous Type vulnerability in National Keep Cyber Security Services CyberMath allows Upload a Web Shell to a Web Server.This issue affects CyberMath: from v.1.4 before v.1.5. | 9.8 |
| 2024-01-31 | CVE-2024-1113 | Unrestricted Upload of File with Dangerous Type vulnerability in Openbi A vulnerability, which was classified as critical, was found in openBI up to 1.0.8. | 9.8 |
| 2024-01-31 | CVE-2024-1116 | Unrestricted Upload of File with Dangerous Type vulnerability in Openbi A vulnerability was found in openBI up to 1.0.8. | 9.8 |
| 2024-01-31 | CVE-2023-31505 | Unrestricted Upload of File with Dangerous Type vulnerability in Schlix CMS 2.2.81 An arbitrary file upload vulnerability in Schlix CMS v2.2.8-1, allows remote authenticated attackers to execute arbitrary code and obtain sensitive information via a crafted .phtml file. | 7.2 |
| 2024-01-31 | CVE-2024-1069 | Unrestricted Upload of File with Dangerous Type vulnerability in Crmperks Database for Contact Form 7, Wpforms, Elementor Forms The Contact Form Entries plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on the 'view_page' function in versions up to, and including, 1.3.2. | 7.2 |
| 2024-01-30 | CVE-2024-1036 | Unrestricted Upload of File with Dangerous Type vulnerability in Openbi A vulnerability was found in openBI up to 1.0.8 and classified as critical. | 9.8 |