Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2023-09-29 CVE-2023-5284 Unrestricted Upload of File with Dangerous Type vulnerability in Engineers Online Portal Project Engineers Online Portal 1.0
A vulnerability classified as critical has been found in SourceCodester Engineers Online Portal 1.0.
network
low complexity
engineers-online-portal-project CWE-434
8.8
2023-09-29 CVE-2023-5277 Unrestricted Upload of File with Dangerous Type vulnerability in Engineers Online Portal Project Engineers Online Portal 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Engineers Online Portal 1.0.
network
low complexity
engineers-online-portal-project CWE-434
critical
9.8
2023-09-29 CVE-2023-5262 Unrestricted Upload of File with Dangerous Type vulnerability in Openrapid Rapidcms 1.3.1
A vulnerability has been found in OpenRapid RapidCMS 1.3.1 and classified as critical.
network
low complexity
openrapid CWE-434
8.8
2023-09-28 CVE-2023-43740 Unrestricted Upload of File with Dangerous Type vulnerability in Projectworlds Online Book Store Project 1.0
Online Book Store Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'image' parameter of admin_edit.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application.
network
low complexity
projectworlds CWE-434
8.8
2023-09-28 CVE-2023-5185 Unrestricted Upload of File with Dangerous Type vulnerability in Projectworlds GYM Management System Project 1.0
Gym Management System Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'file' parameter of profile/i.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application.
network
low complexity
projectworlds CWE-434
8.8
2023-09-28 CVE-2023-43226 Unrestricted Upload of File with Dangerous Type vulnerability in Dedecms
An arbitrary file upload vulnerability in dede/baidunews.php in DedeCMS 5.7.111 and earlier allows attackers to execute arbitrary code via uploading a crafted PHP file.
network
low complexity
dedecms CWE-434
8.8
2023-09-28 CVE-2022-47186 Unrestricted Upload of File with Dangerous Type vulnerability in Generex Cs141 Firmware
There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version.
network
low complexity
generex CWE-434
critical
9.1
2023-09-28 CVE-2023-38874 Unrestricted Upload of File with Dangerous Type vulnerability in Economizzer 0.9/April2023
A remote code execution (RCE) vulnerability via an insecure file upload exists in gugoan's Economizzer v.0.9-beta1 and commit 3730880 (April 2023).
network
low complexity
economizzer CWE-434
8.8
2023-09-27 CVE-2023-40219 Unrestricted Upload of File with Dangerous Type vulnerability in Collne Welcart E-Commerce
Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with editor or higher privilege to upload an arbitrary file to an unauthorized directory.
network
low complexity
collne CWE-434
7.2
2023-09-27 CVE-2023-42462 Unrestricted Upload of File with Dangerous Type vulnerability in Glpi-Project Glpi
GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing.
network
low complexity
glpi-project CWE-434
critical
9.1