| 2024-12-13 | CVE-2024-12042 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the profile picture upload functionality in all versions up to, and including, 4.16.4 due to insufficient file type validation. | 5.4 |
| 2024-12-12 | CVE-2024-10590 | The Opt-In Downloads plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the admin_upload() function in all versions up to, and including, 4.07. | 8.8 |
| 2024-12-05 | CVE-2024-12233 | Unrestricted Upload of File with Dangerous Type vulnerability in Fabianros Online Notice Board 1.0
A vulnerability was found in code-projects Online Notice Board up to 1.0 and classified as critical. | 9.8 |
| 2024-12-03 | CVE-2024-25020 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Cognos Controller 11.0.0/11.0.1
IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by allowing unrestricted filetype attachments in the Journal entry page. | 9.8 |
| 2024-12-03 | CVE-2024-25019 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Cognos Controller 11.0.0/11.0.1
IBM Cognos Controller 11.0.0 and 11.0.1 could be vulnerable to malicious file upload by not validating the type of file uploaded to Journal entry attachments. | 9.8 |
| 2024-12-03 | CVE-2024-40691 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Cognos Controller 11.0.0/11.0.1
IBM Cognos Controller 11.0.0 and 11.0.1 could be vulnerable to malicious file upload by not validating the content of the file uploaded to the web interface. | 9.8 |
| 2024-11-28 | CVE-2024-11971 | Unrestricted Upload of File with Dangerous Type vulnerability in Jpress 5.1.2
A vulnerability classified as problematic was found in Guizhou Xiaoma Technology jpress 5.1.2. | 5.4 |
| 2024-11-26 | CVE-2024-11674 | Unrestricted Upload of File with Dangerous Type vulnerability in Hospital Management System Project Hospital Management System 1.0
A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management System 1.0. | 8.8 |
| 2024-11-25 | CVE-2024-11661 | Unrestricted Upload of File with Dangerous Type vulnerability in Codezips Free Exam Hall Seating Management System 1.0
A vulnerability was found in Codezips Free Exam Hall Seating Management System 1.0. | 9.8 |
| 2024-11-20 | CVE-2024-52677 | Unrestricted Upload of File with Dangerous Type vulnerability in Hkcms 2.3.0.230709
HkCms <= v2.3.2.240702 is vulnerable to file upload in the getFileName method in /app/common/library/Upload.php. | 9.8 |