Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-15 | CVE-2023-30791 | Unrestricted Upload of File with Dangerous Type vulnerability in Plane 0.7.1 Plane version 0.7.1-dev allows an attacker to change the avatar of his profile, which allows uploading files with HTML extension that interprets both HTML and JavaScript. | 4.6 |
| 2023-07-13 | CVE-2023-37839 | Unrestricted Upload of File with Dangerous Type vulnerability in Dedecms 5.7.109 An arbitrary file upload vulnerability in /dede/file_manage_control.php of DedeCMS v5.7.109 allows attackers to execute arbitrary code via uploading a crafted PHP file. | 9.8 |
| 2023-07-13 | CVE-2023-34136 | Unrestricted Upload of File with Dangerous Type vulnerability in Sonicwall Analytics and Global Management System Vulnerability in SonicWall GMS and Analytics allows unauthenticated attacker to upload files to a restricted location not controlled by the attacker. | 9.8 |
| 2023-07-13 | CVE-2023-34126 | Unrestricted Upload of File with Dangerous Type vulnerability in Sonicwall Analytics and Global Management System Vulnerability in SonicWall GMS and Analytics allows an authenticated attacker to upload files on the underlying filesystem with root privileges. | 8.8 |
| 2023-07-12 | CVE-2023-37629 | Unrestricted Upload of File with Dangerous Type vulnerability in Simple Online Piggery Management System Project Simple Online Piggery Management System 1.0 Online Piggery Management System 1.0 is vulnerable to File Upload. | 9.8 |
| 2023-07-11 | CVE-2023-37656 | Unrestricted Upload of File with Dangerous Type vulnerability in Websiteguide Project Websiteguide 0.2 WebsiteGuide v0.2 is vulnerable to Remote Command Execution (RCE) via image upload. | 9.8 |
| 2023-07-10 | CVE-2023-37152 | Unrestricted Upload of File with Dangerous Type vulnerability in Online ART Gallery Project Online ART Gallery 1.0 Projectworlds Online Art Gallery Project 1.0 allows unauthenticated users to perform arbitrary file uploads via the adminHome.php page. | 9.8 |
| 2023-07-06 | CVE-2023-34193 | Unrestricted Upload of File with Dangerous Type vulnerability in Zimbra Collaboration 8.8.15 File Upload vulnerability in Zimbra ZCS 8.8.15 allows an authenticated privileged user to execute arbitrary code and obtain sensitive information via the ClientUploader function. | 8.8 |
| 2023-07-06 | CVE-2023-36969 | Unrestricted Upload of File with Dangerous Type vulnerability in Cmsmadesimple CMS Made Simple 2.2.17 CMS Made Simple v2.2.17 is vulnerable to Remote Command Execution via the File Upload Function. | 8.8 |
| 2023-07-06 | CVE-2020-21861 | Unrestricted Upload of File with Dangerous Type vulnerability in Duxcms Project Duxcms 2.1 File upload vulnerability in DuxCMS 2.1 allows attackers to execute arbitrary php code via duxcms/AdminUpload/upload. | 8.8 |