Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2022-10-11 CVE-2022-41380 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Yaml 0.1.0
The d8s-yaml package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8
2022-10-11 CVE-2022-41381 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Utility 0.1.0
The d8s-utility package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8
2022-10-11 CVE-2022-41382 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Json 0.1.0
The d8s-json package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8
2022-10-11 CVE-2022-41383 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Archives 0.1.0
The d8s-archives package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8
2022-10-11 CVE-2022-41384 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Domains 0.1.0
The d8s-domains package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8
2022-10-11 CVE-2022-41385 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Html 0.1.0
The d8s-html package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8
2022-10-11 CVE-2022-41386 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Utility 0.1.0
The d8s-utility package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8
2022-10-11 CVE-2022-41387 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Pdfs 0.1.0
The d8s-pdfs package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8
2022-10-11 CVE-2022-42036 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Urls 0.1.0
The d8s-urls package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8
2022-10-11 CVE-2022-42037 Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Asns 0.1.0
The d8s-asns package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
democritus CWE-434
critical
9.8