Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-13 | CVE-2022-42287 | Unrestricted Upload of File with Dangerous Type vulnerability in Nvidia BMC NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can upload and download arbitrary files under certain circumstances, which may lead to denial of service, escalation of privileges, information disclosure and data tampering. | 7.8 |
| 2023-01-12 | CVE-2023-0257 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Food Ordering System Project Online Food Ordering System 2.0 A vulnerability was found in SourceCodester Online Food Ordering System 2.0. | 9.8 |
| 2023-01-10 | CVE-2022-46610 | Unrestricted Upload of File with Dangerous Type vulnerability in 72Crm Wukong CRM 9.0 72crm v9 was discovered to contain an arbitrary file upload vulnerability via the avatar upload function. | 8.8 |
| 2023-01-03 | CVE-2022-44036 | Unrestricted Upload of File with Dangerous Type vulnerability in B2Evolution CMS 7.2.5 In b2evolution 7.2.5, if configured with admins_can_manipulate_sensitive_files, arbitrary file upload is allowed for admins, leading to command execution. | 7.2 |
| 2022-12-30 | CVE-2022-48194 | Unrestricted Upload of File with Dangerous Type vulnerability in Tp-Link Tl-Wr902Ac Firmware 3.0.9.1 TP-Link TL-WR902AC devices through V3 0.9.1 allow remote authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) by uploading a crafted firmware update because the signature check is inadequate. | 8.8 |
| 2022-12-27 | CVE-2022-45427 | Unrestricted Upload of File with Dangerous Type vulnerability in Dahuasecurity products Some Dahua software products have a vulnerability of unrestricted upload of file. | 7.2 |
| 2022-12-25 | CVE-2022-45896 | Unrestricted Upload of File with Dangerous Type vulnerability in Planetestream Planet Estream Planet eStream before 6.72.10.07 allows unauthenticated upload of arbitrary files: Choose a Video / Related Media or Upload Document. | 9.8 |
| 2022-12-22 | CVE-2022-46493 | Unrestricted Upload of File with Dangerous Type vulnerability in Nbnbk Project Nbnbk Default version of nbnbk was discovered to contain an arbitrary file upload vulnerability via the component /api/User/download_img. | 9.8 |
| 2022-12-22 | CVE-2022-0517 | Unrestricted Upload of File with Dangerous Type vulnerability in Mozilla VPN Mozilla VPN can load an OpenSSL configuration file from an unsecured directory. | 7.8 |
| 2022-12-22 | CVE-2022-46102 | Unrestricted Upload of File with Dangerous Type vulnerability in Ayacms Project Ayacms 3.1.2 AyaCMS 3.1.2 is vulnerable to Arbitrary file upload via /aya/module/admin/fst_down.inc.php | 9.8 |