Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-12 | CVE-2023-40784 | Unrestricted Upload of File with Dangerous Type vulnerability in Dedecms 5.7.102 DedeCMS 5.7.102 has a File Upload vulnerability via uploads/dede/module_make.php. | 9.8 |
| 2023-09-12 | CVE-2023-2071 | Unrestricted Upload of File with Dangerous Type vulnerability in Rockwellautomation Factorytalk View 13.0 Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted malicious packets. | 9.8 |
| 2023-09-12 | CVE-2023-40731 | Unrestricted Upload of File with Dangerous Type vulnerability in Siemens QMS Automotive 12.30 A vulnerability has been identified in QMS Automotive (All versions < V12.39). | 8.8 |
| 2023-09-12 | CVE-2023-42472 | Unrestricted Upload of File with Dangerous Type vulnerability in SAP Businessobjects Business Intelligence Platform 420 Due to insufficient file type validation, SAP BusinessObjects Business Intelligence Platform (Web Intelligence HTML interface) - version 420, allows a report creator to upload files from local system into the report over the network. | 7.3 |
| 2023-09-08 | CVE-2023-41564 | Unrestricted Upload of File with Dangerous Type vulnerability in Agentejo Cockpit 2.6.3 An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file. | 6.1 |
| 2023-09-07 | CVE-2023-39424 | Unrestricted Upload of File with Dangerous Type vulnerability in Resortdata Internet Reservation Module Next Generation 5.3.2.15 A vulnerability in RDPngFileUpload.dll, as used in the IRM Next Generation booking system, allows a remote attacker to upload arbitrary content (such as a web shell component) to the SQL database and execute it with SYSTEM privileges. | 8.8 |
| 2023-09-05 | CVE-2023-41009 | Unrestricted Upload of File with Dangerous Type vulnerability in Adlered Bolo-Solo 2.6 File Upload vulnerability in adlered bolo-solo v.2.6 allows a remote attacker to execute arbitrary code via a crafted script to the authorization field in the header. | 9.8 |
| 2023-09-05 | CVE-2023-3375 | Unrestricted Upload of File with Dangerous Type vulnerability in Bookreen Unrestricted Upload of File with Dangerous Type vulnerability in Unisign Bookreen allows OS Command Injection.This issue affects Bookreen: before 3.0.0. | 7.2 |
| 2023-09-05 | CVE-2023-41108 | Unrestricted Upload of File with Dangerous Type vulnerability in TEF Portal 20230717 TEF portal 2023-07-17 is vulnerable to authenticated remote code execution. | 8.8 |
| 2023-09-03 | CVE-2023-4739 | Unrestricted Upload of File with Dangerous Type vulnerability in Byzoro Smart S85F Firmware 20231010 A vulnerability, which was classified as critical, has been found in Byzoro Smart S85F Management Platform up to 20230820. | 9.8 |