Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-10 | CVE-2023-29930 | Unrestricted Upload of File with Dangerous Type vulnerability in Genesys Tftp Server An issue was found in Genesys CIC Polycom phone provisioning TFTP Server all version allows a remote attacker to execute arbitrary code via the login crednetials to the TFTP server configuration page. | 8.8 |
| 2023-05-09 | CVE-2023-28128 | Unrestricted Upload of File with Dangerous Type vulnerability in Ivanti Avalanche An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution. | 7.2 |
| 2023-05-08 | CVE-2023-24507 | Unrestricted Upload of File with Dangerous Type vulnerability in Agilepoint NX 8.0 AgilePoint NX v8.0 SU2.2 & SU2.3 – Insecure File Upload - Vulnerability allows insecure file upload, by an unspecified request. | 9.8 |
| 2023-05-08 | CVE-2020-22755 | Unrestricted Upload of File with Dangerous Type vulnerability in Mingsoft Mcms 5.0 File upload vulnerability in MCMS 5.0 allows attackers to execute arbitrary code via a crafted thumbnail. | 8.8 |
| 2023-05-08 | CVE-2021-27280 | Unrestricted Upload of File with Dangerous Type vulnerability in Mblog Project Mblog 3.5.0 OS Command injection vulnerability in mblog 3.5.0 allows attackers to execute arbitrary code via crafted theme when it gets selected. | 7.8 |
| 2023-05-08 | CVE-2021-28998 | Unrestricted Upload of File with Dangerous Type vulnerability in Cmsmadesimple CMS Made Simple File upload vulnerability in CMS Made Simple through 2.2.15 allows remote authenticated attackers to gain a webshell via a crafted phar file. | 7.2 |
| 2023-05-08 | CVE-2023-30185 | Unrestricted Upload of File with Dangerous Type vulnerability in Crmeb CRMEB v4.4 to v4.6 was discovered to contain an arbitrary file upload vulnerability via the component \attachment\SystemAttachmentServices.php. | 9.8 |
| 2023-05-05 | CVE-2023-30090 | Unrestricted Upload of File with Dangerous Type vulnerability in Sem-Cms Semcms 4.2 Semcms Shop v4.2 was discovered to contain an arbitrary file uplaod vulnerability via the component SEMCMS_Upfile.php. | 9.8 |
| 2023-05-05 | CVE-2023-30122 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 An arbitrary file upload vulnerability in the component /admin/ajax.php?action=save_menu of Online Food Ordering System v2.0 allows attackers to execute arbitrary code via uploading a crafted PHP file. | 9.8 |
| 2023-05-04 | CVE-2023-30264 | Unrestricted Upload of File with Dangerous Type vulnerability in Cltphp 6.0 CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via application/admin/controller/Template.php:update. | 9.8 |