Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2024-10-28 CVE-2024-50496 Unrestricted Upload of File with Dangerous Type vulnerability in Webandprint AR
Unrestricted Upload of File with Dangerous Type vulnerability in Web and Print Design AR For WordPress allows Upload a Web Shell to a Web Server.This issue affects AR For WordPress: from n/a through 6.2.
network
low complexity
webandprint CWE-434
critical
 10.0
10
2024-10-27 CVE-2024-10420 Unrestricted Upload of File with Dangerous Type vulnerability in Nurhodelta17 Attendance and Payroll System 1.0
A vulnerability classified as critical has been found in SourceCodester Attendance and Payroll System 1.0.
network
low complexity
nurhodelta17 CWE-434
critical
 9.8
9.8
2024-10-27 CVE-2024-10413 Unrestricted Upload of File with Dangerous Type vulnerability in Janobe Online Hotel Reservation System 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Online Hotel Reservation System 1.0.
network
low complexity
janobe CWE-434
critical
 9.8
9.8
2024-10-27 CVE-2024-10410 Unrestricted Upload of File with Dangerous Type vulnerability in Janobe Online Hotel Reservation System 1.0
A vulnerability classified as critical was found in SourceCodester Online Hotel Reservation System 1.0.
network
low complexity
janobe CWE-434
7.2
7.2
2024-10-26 CVE-2024-9932 The Wux Blog Editor plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'wuxbt_insertImageNew' function in versions up to, and including, 3.0.0.
network
low complexity
CWE-434
critical
 9.8
9.8
2024-10-23 CVE-2024-10292 Unrestricted Upload of File with Dangerous Type vulnerability in Zzcms 2023
A vulnerability was found in ZZCMS 2023 and classified as critical.
network
low complexity
zzcms CWE-434
critical
 9.8
9.8
2024-10-23 CVE-2024-10293 Unrestricted Upload of File with Dangerous Type vulnerability in Zzcms 2023
A vulnerability was found in ZZCMS 2023.
network
low complexity
zzcms CWE-434
critical
 9.8
9.8
2024-10-21 CVE-2024-10201 Unrestricted Upload of File with Dangerous Type vulnerability in Wellchoose Administrative Management System
Administrative Management System from Wellchoose does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload and execute webshells.
network
low complexity
wellchoose CWE-434
8.8
8.8
2024-10-20 CVE-2024-49324 Unrestricted Upload of File with Dangerous Type vulnerability in Sovratec Case Management
Unrestricted Upload of File with Dangerous Type vulnerability in Sovratec Sovratec Case Management allows Upload a Web Shell to a Web Server.This issue affects Sovratec Case Management: from n/a through 1.0.0.
network
low complexity
sovratec CWE-434
critical
 9.8
9.8
2024-10-20 CVE-2024-49326 Unrestricted Upload of File with Dangerous Type vulnerability in Vasiliskerasiotis Affiliator
Unrestricted Upload of File with Dangerous Type vulnerability in Vasilis Kerasiotis Affiliator allows Upload a Web Shell to a Web Server.This issue affects Affiliator: from n/a through 2.1.3.
network
low complexity
vasiliskerasiotis CWE-434
critical
 9.8
9.8