Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-12 | CVE-2024-0468 | Unrestricted Upload of File with Dangerous Type vulnerability in Code-Projects Fighting Cock Information System 1.0 A vulnerability has been found in code-projects Fighting Cock Information System 1.0 and classified as critical. | 9.8 |
| 2024-01-12 | CVE-2023-51806 | Unrestricted Upload of File with Dangerous Type vulnerability in Ujcms 8.0.2 File Upload vulnerability in Ujcms v.8.0.2 allows a local attacker to execute arbitrary code via a crafted file. | 5.4 |
| 2024-01-11 | CVE-2023-46474 | Unrestricted Upload of File with Dangerous Type vulnerability in Sigb PMB File Upload vulnerability PMB v.7.4.8 allows a remote attacker to execute arbitrary code and escalate privileges via a crafted PHP file uploaded to the start_import.php file. | 7.2 |
| 2024-01-11 | CVE-2023-6220 | Unrestricted Upload of File with Dangerous Type vulnerability in Piotnet Forms The Piotnet Forms plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'piotnetforms_ajax_form_builder' function in versions up to, and including, 1.0.26. | 9.8 |
| 2024-01-11 | CVE-2023-6316 | Unrestricted Upload of File with Dangerous Type vulnerability in MW WP Form Project MW WP Form 4.4.2 The MW WP Form plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the '_single_file_upload' function in versions up to, and including, 5.0.1. | 9.8 |
| 2024-01-11 | CVE-2023-6558 | Unrestricted Upload of File with Dangerous Type vulnerability in Webtoffee Import Export Wordpress Users The Export and Import Users and Customers plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'upload_import_file' function in versions up to, and including, 2.4.8. | 7.2 |
| 2024-01-11 | CVE-2023-6636 | Unrestricted Upload of File with Dangerous Type vulnerability in Greenshiftwp Greenshift - Animation and Page Builder Blocks The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation on the 'gspb_save_files' function in versions up to, and including, 7.6.2. | 7.2 |
| 2024-01-11 | CVE-2023-6979 | Unrestricted Upload of File with Dangerous Type vulnerability in Cusrev Customer Reviews for Woocommerce The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ivole_import_upload_csv AJAX action in all versions up to, and including, 5.38.9. | 8.8 |
| 2024-01-10 | CVE-2023-49715 | Unrestricted Upload of File with Dangerous Type vulnerability in Wwbn Avideo 15Fed957Fb A unrestricted php file upload vulnerability exists in the import.json.php temporary copy functionality of WWBN AVideo dev master commit 15fed957fb. | 8.8 |
| 2024-01-10 | CVE-2020-26629 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul Hospital Management System 4.0 A JQuery Unrestricted Arbitrary File Upload vulnerability was discovered in Hospital Management System V4.0 which allows an unauthenticated attacker to upload any file to the server. | 9.8 |