Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-12 | CVE-2023-40784 | Unrestricted Upload of File with Dangerous Type vulnerability in Dedecms 5.7.102 DedeCMS 5.7.102 has a File Upload vulnerability via uploads/dede/module_make.php. | 9.8 |
| 2023-09-12 | CVE-2023-2071 | Unrestricted Upload of File with Dangerous Type vulnerability in Rockwellautomation Factorytalk View 13.0 Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted malicious packets. | 9.8 |
| 2023-09-08 | CVE-2023-41564 | Unrestricted Upload of File with Dangerous Type vulnerability in Agentejo Cockpit 2.6.3 An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file. | 6.1 |
| 2023-09-07 | CVE-2023-39424 | Unrestricted Upload of File with Dangerous Type vulnerability in Resortdata Internet Reservation Module Next Generation 5.3.2.15 A vulnerability in RDPngFileUpload.dll, as used in the IRM Next Generation booking system, allows a remote attacker to upload arbitrary content (such as a web shell component) to the SQL database and execute it with SYSTEM privileges. | 8.8 |
| 2023-09-05 | CVE-2023-41009 | Unrestricted Upload of File with Dangerous Type vulnerability in Adlered Bolo-Solo 2.6 File Upload vulnerability in adlered bolo-solo v.2.6 allows a remote attacker to execute arbitrary code via a crafted script to the authorization field in the header. | 9.8 |
| 2023-09-05 | CVE-2023-41108 | Unrestricted Upload of File with Dangerous Type vulnerability in TEF Portal 20230717 TEF portal 2023-07-17 is vulnerable to authenticated remote code execution. | 8.8 |
| 2023-09-01 | CVE-2023-40980 | Unrestricted Upload of File with Dangerous Type vulnerability in Diaowen Dwsurvey 1.0/3.2.0 File Upload vulnerability in DWSurvey DWSurvey-OSS v.3.2.0 and before allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file. | 9.8 |
| 2023-08-31 | CVE-2023-41637 | Unrestricted Upload of File with Dangerous Type vulnerability in Grupposcai Realgimm 1.1.37 An arbitrary file upload vulnerability in the Carica immagine function of GruppoSCAI RealGimm 1.1.37p38 allows attackers to execute arbitrary code via uploading a crafted HTML file. | 9.8 |
| 2023-08-31 | CVE-2023-41638 | Unrestricted Upload of File with Dangerous Type vulnerability in Grupposcai Realgimm 1.1.37 An arbitrary file upload vulnerability in the Gestione Documentale module of GruppoSCAI RealGimm 1.1.37p38 allows attackers to execute arbitrary code via uploading a crafted file. | 8.8 |
| 2023-08-29 | CVE-2020-18912 | Unrestricted Upload of File with Dangerous Type vulnerability in Earcms EAR 20181124 An issue found in Earcms Ear App v.20181124 allows a remote attacker to execute arbitrary code via the uload/index-uplog.php. | 9.8 |