Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-17 | CVE-2022-43192 | Unrestricted Upload of File with Dangerous Type vulnerability in Dedecms 5.7.101 An arbitrary file upload vulnerability in the component /dede/file_manage_control.php of Dedecms v5.7.101 allows attackers to execute arbitrary code via a crafted PHP file. | 6.7 |
| 2022-11-17 | CVE-2022-44384 | Unrestricted Upload of File with Dangerous Type vulnerability in Rconfig 3.9.6 An arbitrary file upload vulnerability in rconfig v3.9.6 allows attackers to execute arbitrary code via a crafted PHP file. | 8.8 |
| 2022-11-16 | CVE-2022-43234 | Unrestricted Upload of File with Dangerous Type vulnerability in Hoosk 1.8.0 An arbitrary file upload vulnerability in the /attachments component of Hoosk v1.8 allows attackers to execute arbitrary code via a crafted PHP file. | 9.8 |
| 2022-11-15 | CVE-2022-43265 | Unrestricted Upload of File with Dangerous Type vulnerability in Canteen Management System Project Canteen Management System 1.0 An arbitrary file upload vulnerability in the component /pages/save_user.php of Canteen Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | 9.8 |
| 2022-11-14 | CVE-2022-43146 | Unrestricted Upload of File with Dangerous Type vulnerability in Canteen Management System Project Canteen Management System 1.0 An arbitrary file upload vulnerability in the image upload function of Canteen Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | 7.2 |
| 2022-11-11 | CVE-2022-3944 | Unrestricted Upload of File with Dangerous Type vulnerability in ERP Project ERP A vulnerability was found in jerryhanjj ERP. | 8.8 |
| 2022-11-10 | CVE-2022-40981 | Unrestricted Upload of File with Dangerous Type vulnerability in Etictelecom Remote Access Server Firmware 4.5.0 All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior is vulnerable to malicious file upload. | 10.0 |
| 2022-11-10 | CVE-2022-43074 | Unrestricted Upload of File with Dangerous Type vulnerability in Ayacms Project Ayacms 3.1.2 AyaCMS v3.1.2 was discovered to contain an arbitrary file upload vulnerability via the component /admin/fst_upload.inc.php. | 9.8 |
| 2022-11-09 | CVE-2022-43277 | Unrestricted Upload of File with Dangerous Type vulnerability in Canteen Management System Project Canteen Management System 1.0 Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via ip/youthappam/php_action/editFile.php. | 7.2 |
| 2022-11-09 | CVE-2022-40797 | Unrestricted Upload of File with Dangerous Type vulnerability in Roxyfileman Roxy Fileman 1.4.6 Roxy Fileman 1.4.6 allows Remote Code Execution via a .phar upload, because the default FORBIDDEN_UPLOADS value in conf.json only blocks .php, .php4, and .php5 files. | 9.8 |