Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-21 | CVE-2022-42189 | Unrestricted Upload of File with Dangerous Type vulnerability in Emlog 1.6.0 Emlog Pro 1.6.0 plugins upload suffers from a remote code execution (RCE) vulnerability. | 7.2 |
| 2022-10-20 | CVE-2022-42198 | Unrestricted Upload of File with Dangerous Type vulnerability in Simple Exam Reviewer Management System Project Simple Exam Reviewer Management System 1.0 In Simple Exam Reviewer Management System v1.0 the User List function suffers from insecure file upload. | 8.8 |
| 2022-10-20 | CVE-2022-42201 | Unrestricted Upload of File with Dangerous Type vulnerability in Simple Exam Reviewer Management System Project Simple Exam Reviewer Management System 1.0 Simple Exam Reviewer Management System v1.0 is vulnerable to Insecure file upload. | 7.2 |
| 2022-10-20 | CVE-2022-31366 | Unrestricted Upload of File with Dangerous Type vulnerability in Eve-Ng 2.0.3112 An arbitrary file upload vulnerability in the apiImportLabs function in api_labs.php of EVE-NG 2.0.3-112 Community allows attackers to execute arbitrary code via a crafted UNL file. | 7.2 |
| 2022-10-19 | CVE-2022-39301 | Unrestricted Upload of File with Dangerous Type vulnerability in Sra-Admin Project Sra-Admin 1.1.1 sra-admin is a background rights management system that separates the front and back end. | 5.4 |
| 2022-10-18 | CVE-2022-41537 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Tours & Travels Management System Project Online Tours & Travels Management System 1.0 Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /user_operations/profile.php. | 7.2 |
| 2022-10-18 | CVE-2022-41504 | Unrestricted Upload of File with Dangerous Type vulnerability in Billing System Project Billing System 1.0 An arbitrary file upload vulnerability in the component /php_action/editProductImage.php of Billing System Project v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | 7.2 |
| 2022-10-17 | CVE-2020-8974 | Unrestricted Upload of File with Dangerous Type vulnerability in Zigor ZGR Tps200 NG Firmware 2.00 In ZGR TPS200 NG 2.00 firmware version and 1.01 hardware version, the firmware upload process does not perform any type of restriction. | 9.1 |
| 2022-10-17 | CVE-2022-42029 | Unrestricted Upload of File with Dangerous Type vulnerability in Chamilo 1.11.16 Chamilo 1.11.16 is affected by an authenticated local file inclusion vulnerability which allows authenticated users with access to 'big file uploads' to copy/move files from anywhere in the file system into the web directory. | 8.8 |
| 2022-10-17 | CVE-2022-42154 | Unrestricted Upload of File with Dangerous Type vulnerability in 74Cms 74Cmsse 3.13.0 An arbitrary file upload vulnerability in the component /apiadmin/upload/attach of 74cmsSE v3.13.0 allows attackers to execute arbitrary code via a crafted PHP file. | 9.8 |