Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2024-02-05 CVE-2024-22567 Unrestricted Upload of File with Dangerous Type vulnerability in Mingsoft Mcms 5.3.5
File Upload vulnerability in MCMS 5.3.5 allows attackers to upload arbitrary files via crafted POST request to /ms/file/upload.do.
network
low complexity
mingsoft CWE-434
8.8
2024-02-05 CVE-2021-4436 Unrestricted Upload of File with Dangerous Type vulnerability in Wp3Dprinting 3Dprint Lite
The 3DPrint Lite WordPress plugin before 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlite_handle_upload AJAX action , allowing unauthenticated users to upload arbitrary file to the web server.
network
low complexity
wp3dprinting CWE-434
critical
9.8
2024-02-02 CVE-2023-6675 Unrestricted Upload of File with Dangerous Type vulnerability in Nationalkeep Cybermath 1.4
Unrestricted Upload of File with Dangerous Type vulnerability in National Keep Cyber Security Services CyberMath allows Upload a Web Shell to a Web Server.This issue affects CyberMath: from v.1.4 before v.1.5.
network
low complexity
nationalkeep CWE-434
critical
9.8
2024-01-31 CVE-2024-1113 Unrestricted Upload of File with Dangerous Type vulnerability in Openbi
A vulnerability, which was classified as critical, was found in openBI up to 1.0.8.
network
low complexity
openbi CWE-434
critical
9.8
2024-01-31 CVE-2024-1116 Unrestricted Upload of File with Dangerous Type vulnerability in Openbi
A vulnerability was found in openBI up to 1.0.8.
network
low complexity
openbi CWE-434
critical
9.8
2024-01-31 CVE-2023-31505 Unrestricted Upload of File with Dangerous Type vulnerability in Schlix CMS 2.2.81
An arbitrary file upload vulnerability in Schlix CMS v2.2.8-1, allows remote authenticated attackers to execute arbitrary code and obtain sensitive information via a crafted .phtml file.
network
low complexity
schlix CWE-434
7.2
2024-01-31 CVE-2024-1069 Unrestricted Upload of File with Dangerous Type vulnerability in Crmperks Database for Contact Form 7, Wpforms, Elementor Forms
The Contact Form Entries plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on the 'view_page' function in versions up to, and including, 1.3.2.
network
low complexity
crmperks CWE-434
7.2
2024-01-30 CVE-2024-1036 Unrestricted Upload of File with Dangerous Type vulnerability in Openbi
A vulnerability was found in openBI up to 1.0.8 and classified as critical.
network
low complexity
openbi CWE-434
critical
9.8
2024-01-30 CVE-2024-1035 Unrestricted Upload of File with Dangerous Type vulnerability in Openbi Project Openbi
A vulnerability has been found in openBI up to 1.0.8 and classified as critical.
network
low complexity
openbi-project CWE-434
critical
9.8
2024-01-30 CVE-2024-1034 Unrestricted Upload of File with Dangerous Type vulnerability in Openbi Project Openbi
A vulnerability, which was classified as critical, was found in openBI up to 1.0.8.
network
low complexity
openbi-project CWE-434
critical
9.8