Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-03 | CVE-2023-36299 | Unrestricted Upload of File with Dangerous Type vulnerability in Typecho 1.2.1 A File Upload vulnerability in typecho v.1.2.1 allows a remote attacker to execute arbitrary code via the upload and options-general parameters in index.php. | 8.8 |
| 2023-08-03 | CVE-2023-36212 | Unrestricted Upload of File with Dangerous Type vulnerability in Totalcms Total CMS 1.7.4 File Upload vulnerability in Total CMS v.1.7.4 allows a remote attacker to execute arbitrary code via a crafted PHP file to the edit page function. | 8.8 |
| 2023-08-02 | CVE-2023-38330 | Unrestricted Upload of File with Dangerous Type vulnerability in Oxid-Esales Eshop 6.5.0/6.5.2 OXID eShop Enterprise Edition 6.5.0 – 6.5.2 before 6.5.3 allows uploading files with modified headers in the administration area. | 5.3 |
| 2023-08-02 | CVE-2023-31428 | Unrestricted Upload of File with Dangerous Type vulnerability in Broadcom Brocade Fabric Operating System 9.2.0 Brocade Fabric OS before Brocade Fabric OS v9.1.1c, v9.2.0 contains a vulnerability in the command line that could allow a local user to dump files under user's home directory using grep. | 5.5 |
| 2023-08-01 | CVE-2023-39147 | Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Uvdesk 1.1.3 An arbitrary file upload vulnerability in Uvdesk 1.1.3 allows attackers to execute arbitrary code via uploading a crafted image file. | 7.8 |
| 2023-08-01 | CVE-2023-33493 | Unrestricted Upload of File with Dangerous Type vulnerability in Ajaxmanager Project Ajaxmanager 2.3.0 An Unrestricted Upload of File with Dangerous Type vulnerability in the Ajaxmanager File and Database explorer (ajaxmanager) module for PrestaShop through 2.3.0, allows remote attackers to upload dangerous files without restrictions. | 9.8 |
| 2023-07-30 | CVE-2023-32225 | Unrestricted Upload of File with Dangerous Type vulnerability in Sysaid On-Premises Sysaid - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method. | 7.2 |
| 2023-07-25 | CVE-2022-46899 | Unrestricted Upload of File with Dangerous Type vulnerability in Vocera Report Server and Voice Server An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. | 7.5 |
| 2023-07-25 | CVE-2023-34798 | Unrestricted Upload of File with Dangerous Type vulnerability in Weaver E-Office An arbitrary file upload vulnerability in eoffice before v9.5 allows attackers to execute arbitrary code via uploading a crafted file. | 9.8 |
| 2023-07-25 | CVE-2023-37677 | Unrestricted Upload of File with Dangerous Type vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 (also known as Kliqqi) was discovered to contain a remote code execution (RCE) vulnerability in the component admin_editor.php. | 9.8 |