Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-20 | CVE-2020-21489 | Unrestricted Upload of File with Dangerous Type vulnerability in Feehi Feehicms 2.0.8 File Upload vulnerability in Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component. | 9.8 |
| 2023-06-17 | CVE-2023-35808 | Unrestricted Upload of File with Dangerous Type vulnerability in Sugarcrm 11.0.0/12.0.0 An issue was discovered in SugarCRM Enterprise before 11.0.6 and 12.x before 12.0.3. | 8.8 |
| 2023-06-17 | CVE-2023-3295 | Unrestricted Upload of File with Dangerous Type vulnerability in Unlimited-Elements Unlimited Elements for Elementor The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) for WordPress is vulnerable to arbitrary file uploads due to missing file type validation of files in the file manager functionality in versions up to, and including, 1.5.66 . | 8.8 |
| 2023-06-16 | CVE-2023-34660 | Unrestricted Upload of File with Dangerous Type vulnerability in Jeecg Boot 3.5.0/3.5.1 jjeecg-boot V3.5.0 has an unauthorized arbitrary file upload in /jeecg-boot/jmreport/upload interface. | 6.5 |
| 2023-06-16 | CVE-2023-34845 | Unrestricted Upload of File with Dangerous Type vulnerability in Bludit 3.14.1 Bludit v3.14.1 was discovered to contain an arbitrary file upload vulnerability in the component /admin/new-content. | 5.4 |
| 2023-06-15 | CVE-2023-34833 | Unrestricted Upload of File with Dangerous Type vulnerability in Thinkadmin 6.0 An arbitrary file upload vulnerability in the component /api/upload.php of ThinkAdmin v6 allows attackers to execute arbitrary code via a crafted file. | 6.1 |
| 2023-06-15 | CVE-2022-33166 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Security Directory Suite VA 8.0.1/8.0.1.19 IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 could allow a privileged user to upload malicious files of dangerous types that can be automatically processed within the product's environment. | 7.2 |
| 2023-06-14 | CVE-2023-34747 | Unrestricted Upload of File with Dangerous Type vulnerability in Ujcms 6.0.2 File upload vulnerability in ujcms 6.0.2 via /api/backend/core/web-file-upload/upload. | 9.8 |
| 2023-06-13 | CVE-2023-34944 | Unrestricted Upload of File with Dangerous Type vulnerability in Chamilo LMS An arbitrary file upload vulnerability in the /fileUpload.lib.php component of Chamilo 1.11.* up to v1.11.18 allows attackers to execute arbitrary code via uploading a crafted SVG file. | 9.8 |
| 2023-06-13 | CVE-2023-31541 | Unrestricted Upload of File with Dangerous Type vulnerability in Ckeditor 1.2.3 A unrestricted file upload vulnerability was discovered in the ‘Browse and upload images’ feature of the CKEditor v1.2.3 plugin for Redmine, which allows arbitrary files to be uploaded to the server. | 9.8 |