Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-25 | CVE-2023-3486 | Unrestricted Upload of File with Dangerous Type vulnerability in Papercut MF An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. | 7.5 |
| 2023-07-25 | CVE-2023-32637 | Unrestricted Upload of File with Dangerous Type vulnerability in Gmod Gbrowse GBrowse accepts files with any formats uploaded and places them in the area accessible through unauthenticated web requests. | 9.8 |
| 2023-07-24 | CVE-2022-28863 | Unrestricted Upload of File with Dangerous Type vulnerability in Nokia Netact 22.0.0.62 An issue was discovered in Nokia NetAct 22. | 8.8 |
| 2023-07-21 | CVE-2023-3803 | Unrestricted Upload of File with Dangerous Type vulnerability in Cdwanjiang Flash Flood Disaster Monitoring and Warning System 2.0 A vulnerability classified as problematic has been found in Chengdu Flash Flood Disaster Monitoring and Warning System 2.0. | 3.7 |
| 2023-07-21 | CVE-2023-3802 | Unrestricted Upload of File with Dangerous Type vulnerability in Cdwanjiang Flash Flood Disaster Monitoring and Warning System 2.0 A vulnerability was found in Chengdu Flash Flood Disaster Monitoring and Warning System 2.0. | 9.8 |
| 2023-07-19 | CVE-2023-34394 | Unrestricted Upload of File with Dangerous Type vulnerability in Keysight Geolocation Server 2.4.2 In Keysight Geolocation Server v2.4.2 and prior, an attacker could upload a specially crafted malicious file or delete any file or directory with SYSTEM privileges due to an improper path validation, which could result in local privilege escalation or a denial-of-service condition. | 7.8 |
| 2023-07-19 | CVE-2023-3722 | Unrestricted Upload of File with Dangerous Type vulnerability in Avaya Aura Device Services An OS command injection vulnerability was found in the Avaya Aura Device Services Web application which could allow remote code execution as the Web server user via a malicious uploaded file. | 9.8 |
| 2023-07-19 | CVE-2022-40896 | Unrestricted Upload of File with Dangerous Type vulnerability in Pygments A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer. | 5.5 |
| 2023-07-18 | CVE-2020-22159 | Unrestricted Upload of File with Dangerous Type vulnerability in Evertz 3080Ipx Firmware, 7801Fc Firmware and 7890Ixg Firmware EVERTZ devices 3080IPX exe-guest-v1.2-r26125, 7801FC 1.3 Build 27, and 7890IXG V494 are vulnerable to Arbitrary File Upload, allowing an authenticated attacker to upload a webshell or overwrite any critical system files. | 8.8 |
| 2023-07-17 | CVE-2023-38404 | Unrestricted Upload of File with Dangerous Type vulnerability in Veritas Infoscale Operations Manager The XPRTLD web application in Veritas InfoScale Operations Manager (VIOM) before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. | 8.8 |