Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-26 | CVE-2023-5673 | Unrestricted Upload of File with Dangerous Type vulnerability in Wpvibes WP Mail LOG The WP Mail Log WordPress plugin before 1.1.3 does not properly validate file extensions uploading files to attach to emails, allowing attackers to upload PHP files, leading to remote code execution. | 8.8 |
| 2023-12-26 | CVE-2023-5931 | Unrestricted Upload of File with Dangerous Type vulnerability in Rtcamp Rtmedia The rtMedia for WordPress, BuddyPress and bbPress WordPress plugin before 4.6.16 does not validate files to be uploaded, which could allow attackers with a low-privilege account (e.g. | 8.8 |
| 2023-12-26 | CVE-2023-52086 | Unrestricted Upload of File with Dangerous Type vulnerability in Startutorial PHP Backend for Resumable.Js 0.1.4 resumable.php (aka PHP backend for resumable.js) 0.1.4 before 3c6dbf5 allows arbitrary file upload anywhere in the filesystem via ../ in multipart/form-data content to upload.php. | 8.1 |
| 2023-12-24 | CVE-2023-7091 | Unrestricted Upload of File with Dangerous Type vulnerability in Iteachyou Dreamer CMS 4.1.3 A vulnerability was found in Dreamer CMS 4.1.3. | 8.8 |
| 2023-12-22 | CVE-2023-51034 | Unrestricted Upload of File with Dangerous Type vulnerability in Totolink Ex1200L Firmware 9.3.5U.6146B20201023 TOTOlink EX1200L V9.3.5u.6146_B20201023 is vulnerable to arbitrary command execution via the cstecgi.cgi UploadFirmwareFile interface. | 9.8 |
| 2023-12-22 | CVE-2023-42017 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Planning Analytics 2.0 IBM Planning Analytics Local 2.0 could allow a remote attacker to upload arbitrary files, caused by the improper validation of file extensions. | 9.8 |
| 2023-12-21 | CVE-2022-45377 | Unrestricted Upload of File with Dangerous Type vulnerability in Codedropz Drag and Drop multiple File Upload for Woocommerce Unrestricted Upload of File with Dangerous Type vulnerability in Glen Don L. | 9.8 |
| 2023-12-21 | CVE-2023-7026 | Unrestricted Upload of File with Dangerous Type vulnerability in Lightxun Iptv Gateway 20231208 A vulnerability was found in Lightxun IPTV Gateway up to 20231208. | 6.5 |
| 2023-12-20 | CVE-2023-23970 | Unrestricted Upload of File with Dangerous Type vulnerability in Woorockets Corsa Unrestricted Upload of File with Dangerous Type vulnerability in WooRockets Corsa.This issue affects Corsa: from n/a through 1.5. | 8.8 |
| 2023-12-20 | CVE-2023-25970 | Unrestricted Upload of File with Dangerous Type vulnerability in Zendrop 1.0.0 Unrestricted Upload of File with Dangerous Type vulnerability in Zendrop Zendrop – Global Dropshipping.This issue affects Zendrop – Global Dropshipping: from n/a through 1.0.0. | 9.8 |