Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-02 | CVE-2023-38330 | Unrestricted Upload of File with Dangerous Type vulnerability in Oxid-Esales Eshop 6.5.0/6.5.2 OXID eShop Enterprise Edition 6.5.0 – 6.5.2 before 6.5.3 allows uploading files with modified headers in the administration area. | 5.3 |
| 2023-08-02 | CVE-2023-31428 | Unrestricted Upload of File with Dangerous Type vulnerability in Broadcom Brocade Fabric Operating System 9.2.0 Brocade Fabric OS before Brocade Fabric OS v9.1.1c, v9.2.0 contains a vulnerability in the command line that could allow a local user to dump files under user's home directory using grep. | 5.5 |
| 2023-08-01 | CVE-2023-39147 | Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Uvdesk 1.1.3 An arbitrary file upload vulnerability in Uvdesk 1.1.3 allows attackers to execute arbitrary code via uploading a crafted image file. | 7.8 |
| 2023-08-01 | CVE-2023-33493 | Unrestricted Upload of File with Dangerous Type vulnerability in Ajaxmanager Project Ajaxmanager 2.3.0 An Unrestricted Upload of File with Dangerous Type vulnerability in the Ajaxmanager File and Database explorer (ajaxmanager) module for PrestaShop through 2.3.0, allows remote attackers to upload dangerous files without restrictions. | 9.8 |
| 2023-07-30 | CVE-2023-32225 | Unrestricted Upload of File with Dangerous Type vulnerability in Sysaid On-Premises Sysaid - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method. | 7.2 |
| 2023-07-25 | CVE-2022-46899 | Unrestricted Upload of File with Dangerous Type vulnerability in Vocera Report Server and Voice Server An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. | 7.5 |
| 2023-07-25 | CVE-2023-34798 | Unrestricted Upload of File with Dangerous Type vulnerability in Weaver E-Office An arbitrary file upload vulnerability in eoffice before v9.5 allows attackers to execute arbitrary code via uploading a crafted file. | 9.8 |
| 2023-07-25 | CVE-2023-37677 | Unrestricted Upload of File with Dangerous Type vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 (also known as Kliqqi) was discovered to contain a remote code execution (RCE) vulnerability in the component admin_editor.php. | 9.8 |
| 2023-07-25 | CVE-2023-3486 | Unrestricted Upload of File with Dangerous Type vulnerability in Papercut MF An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. | 7.5 |
| 2023-07-25 | CVE-2023-32637 | Unrestricted Upload of File with Dangerous Type vulnerability in Gmod Gbrowse GBrowse accepts files with any formats uploaded and places them in the area accessible through unauthenticated web requests. | 9.8 |