Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-14 | CVE-2022-41539 | Unrestricted Upload of File with Dangerous Type vulnerability in Wedding Planner Project Wedding Planner 1.0 Wedding Planner v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /admin/users_add.php. | 8.8 |
| 2022-10-13 | CVE-2022-41533 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Diagnostic LAB Management System Project Online Diagnostic LAB Management System 1.0 Online Diagnostic Lab Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /php_action/editProductImage.php. | 7.2 |
| 2022-10-13 | CVE-2022-41534 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Diagnostic LAB Management System Project Online Diagnostic LAB Management System 1.0 Online Diagnostic Lab Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /php_action/createOrder.php. | 7.2 |
| 2022-10-12 | CVE-2022-3458 | Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Human Resource Management System 1.0 A vulnerability has been found in SourceCodester Human Resource Management System 1.0 and classified as critical. | 9.8 |
| 2022-10-12 | CVE-2022-40921 | Unrestricted Upload of File with Dangerous Type vulnerability in Dedecms 5.7.99 DedeCMS V5.7.99 was discovered to contain an arbitrary file upload vulnerability via the component /dede/file_manage_control.php. | 7.2 |
| 2022-10-12 | CVE-2022-41406 | Unrestricted Upload of File with Dangerous Type vulnerability in Church Management System Project Church Management System 1.0 An arbitrary file upload vulnerability in the /admin/admin_pic.php component of Church Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | 7.2 |
| 2022-10-11 | CVE-2022-40777 | Unrestricted Upload of File with Dangerous Type vulnerability in Interspire Email Marketer Interspire Email Marketer through 6.5.0 allows arbitrary file upload via a surveys_submit.php "create survey and submit survey" operation, which can cause a .php file to be accessible under a /admin/temp/surveys/ URI. | 8.8 |
| 2022-10-11 | CVE-2022-41380 | Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Yaml 0.1.0 The d8s-yaml package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. | 9.8 |
| 2022-10-11 | CVE-2022-41381 | Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Utility 0.1.0 The d8s-utility package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. | 9.8 |
| 2022-10-11 | CVE-2022-41382 | Unrestricted Upload of File with Dangerous Type vulnerability in Democritus D8S-Json 0.1.0 The d8s-json package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. | 9.8 |