Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2022-10-31 CVE-2022-3771 Unrestricted Upload of File with Dangerous Type vulnerability in Easyiicms
A vulnerability, which was classified as critical, has been found in easyii CMS.
network
low complexity
easyiicms CWE-434
critical
9.8
2022-10-28 CVE-2022-43283 Unrestricted Upload of File with Dangerous Type vulnerability in Webassembly Wabt 1.0.29
wasm2c v1.0.29 was discovered to contain an abort in CWriter::Write.
local
low complexity
webassembly CWE-434
5.5
2022-10-28 CVE-2022-43231 Unrestricted Upload of File with Dangerous Type vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/manage_website.php.
7.2
2022-10-28 CVE-2022-37426 Unrestricted Upload of File with Dangerous Type vulnerability in Opennebula
Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Injection.
network
low complexity
opennebula CWE-434
7.5
2022-10-28 CVE-2022-43275 Unrestricted Upload of File with Dangerous Type vulnerability in Canteen Management System Project Canteen Management System 1.0
Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/php_action/editProductImage.php.
7.2
2022-10-28 CVE-2021-38397 Unrestricted Upload of File with Dangerous Type vulnerability in Honeywell products
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file uploads, which may allow an attacker to remotely execute arbitrary code and cause a denial-of-service condition.
network
low complexity
honeywell CWE-434
critical
10.0
2022-10-28 CVE-2022-33859 Unrestricted Upload of File with Dangerous Type vulnerability in Eaton Foreseer Electrical Power Monitoring System 4.0/7.0/7.5
A security vulnerability was discovered in the Eaton Foreseer EPMS software.
network
low complexity
eaton CWE-434
critical
9.8
2022-10-27 CVE-2022-39977 Unrestricted Upload of File with Dangerous Type vulnerability in Online PET Shop WE APP Project Online PET Shop WE APP 1.0
Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the User module.
network
low complexity
online-pet-shop-we-app-project CWE-434
7.2
2022-10-27 CVE-2022-39978 Unrestricted Upload of File with Dangerous Type vulnerability in Online PET Shop WE APP Project Online PET Shop WE APP 1.0
Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the Product List module.
network
low complexity
online-pet-shop-we-app-project CWE-434
7.2
2022-10-25 CVE-2022-41711 Unrestricted Upload of File with Dangerous Type vulnerability in Uatech Badaso 2.6.0
Badaso version 2.6.0 allows an unauthenticated remote attacker to execute arbitrary code remotely on the server.
network
low complexity
uatech CWE-434
critical
9.8