Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-02 | CVE-2023-44008 | Unrestricted Upload of File with Dangerous Type vulnerability in Mojoportal 2.7.0.0 File Upload vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the File Manager function. | 9.8 |
| 2023-10-02 | CVE-2023-44009 | Unrestricted Upload of File with Dangerous Type vulnerability in Mojoportal 2.7.0.0 File Upload vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the Skin Management function. | 9.8 |
| 2023-09-28 | CVE-2023-5185 | Unrestricted Upload of File with Dangerous Type vulnerability in Projectworlds GYM Management System Project 1.0 Gym Management System Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'file' parameter of profile/i.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application. | 8.8 |
| 2023-09-28 | CVE-2023-43226 | Unrestricted Upload of File with Dangerous Type vulnerability in Dedecms An arbitrary file upload vulnerability in dede/baidunews.php in DedeCMS 5.7.111 and earlier allows attackers to execute arbitrary code via uploading a crafted PHP file. | 8.8 |
| 2023-09-28 | CVE-2022-47186 | Unrestricted Upload of File with Dangerous Type vulnerability in Generex Cs141 Firmware There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. | 9.1 |
| 2023-09-28 | CVE-2023-38874 | Unrestricted Upload of File with Dangerous Type vulnerability in Economizzer 0.9/April2023 A remote code execution (RCE) vulnerability via an insecure file upload exists in gugoan's Economizzer v.0.9-beta1 and commit 3730880 (April 2023). | 8.8 |
| 2023-09-27 | CVE-2023-40219 | Unrestricted Upload of File with Dangerous Type vulnerability in Welcart E-Commerce Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with editor or higher privilege to upload an arbitrary file to an unauthorized directory. | 7.2 |
| 2023-09-27 | CVE-2023-42462 | Unrestricted Upload of File with Dangerous Type vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. | 9.1 |
| 2023-09-25 | CVE-2023-5150 | Unrestricted Upload of File with Dangerous Type vulnerability in Dlink Dar-7000 Firmware and Dar-8000 Firmware ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical has been found in D-Link DAR-7000 and DAR-8000 up to 20151231. | 8.8 |
| 2023-09-20 | CVE-2023-42331 | Unrestricted Upload of File with Dangerous Type vulnerability in Elitecms Elite CMS 1.01 A file upload vulnerability in EliteCMS v1.01 allows a remote attacker to execute arbitrary code via the manage_uploads.php component. | 8.8 |