Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-6127 | Unrestricted Upload of File with Dangerous Type vulnerability in Salesagility Suitecrm Unrestricted Upload of File with Dangerous Type in GitHub repository salesagility/suitecrm prior to 7.14.2, 7.12.14, 8.4.2. | 5.4 |
| 2023-11-13 | CVE-2023-47621 | Unrestricted Upload of File with Dangerous Type vulnerability in Duncanmcclean Guest Entries Guest Entries is a php library which allows users to create, update & delete entries from the front-end of a site. | 8.8 |
| 2023-11-10 | CVE-2023-47129 | Unrestricted Upload of File with Dangerous Type vulnerability in Statamic Statmic is a core Laravel content management system Composer package. | 9.8 |
| 2023-11-07 | CVE-2023-42659 | Unrestricted Upload of File with Dangerous Type vulnerability in Progress WS FTP Server In WS_FTP Server versions prior to 8.7.6 and 8.8.4, an unrestricted file upload flaw has been identified. | 8.8 |
| 2023-11-07 | CVE-2023-33480 | Unrestricted Upload of File with Dangerous Type vulnerability in Remoteclinic Remote Clinic 2.0 RemoteClinic 2.0 contains a critical vulnerability chain that can be exploited by a remote attacker with low-privileged user credentials to create admin users, escalate privileges, and execute arbitrary code on the target system via a PHP shell. | 8.8 |
| 2023-11-06 | CVE-2023-5601 | Unrestricted Upload of File with Dangerous Type vulnerability in Atomicwebstrategy Woocommerce Ninja Forms Product Add-Ons The WooCommerce Ninja Forms Product Add-ons WordPress plugin before 1.7.1 does not validate the file to be uploaded, allowing any unauthenticated users to upload arbitrary files to the server, leading to RCE. | 9.8 |
| 2023-11-03 | CVE-2023-41725 | Unrestricted Upload of File with Dangerous Type vulnerability in Ivanti Avalanche Ivanti Avalanche EnterpriseServer Service Unrestricted File Upload Local Privilege Escalation Vulnerability | 7.8 |
| 2023-11-03 | CVE-2023-41357 | Unrestricted Upload of File with Dangerous Type vulnerability in GSS Vitals Enterprise Social Platform 3.0.8 Galaxy Software Services Corporation Vitals ESP is an online knowledge base management portal, it has insufficient filtering and validation during file upload. | 8.8 |
| 2023-11-02 | CVE-2023-42802 | Unrestricted Upload of File with Dangerous Type vulnerability in Glpi-Project Glpi 10.0.7/10.0.9 GLPI is a free asset and IT management software package. | 9.8 |
| 2023-11-02 | CVE-2023-5919 | Unrestricted Upload of File with Dangerous Type vulnerability in Company Website CMS Project Company Website CMS 1.0 A vulnerability was found in SourceCodester Company Website CMS 1.0 and classified as problematic. | 7.2 |