Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-26 | CVE-2022-40050 | Unrestricted Upload of File with Dangerous Type vulnerability in Zfile 4.1.1 ZFile v4.1.1 was discovered to contain an arbitrary file upload vulnerability via the component /file/upload/1. | 9.8 |
| 2022-09-26 | CVE-2022-40924 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "save_animal" file of the "Animals" module in the background management system. | 7.2 |
| 2022-09-26 | CVE-2022-40925 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "save_event" file of the "Events" module in the background management system. | 7.2 |
| 2022-09-23 | CVE-2022-3257 | Unrestricted Upload of File with Dangerous Type vulnerability in Mattermost Server Mattermost version 7.1.x and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service. | 6.5 |
| 2022-09-22 | CVE-2022-40087 | Unrestricted Upload of File with Dangerous Type vulnerability in Simple College Website Project Simple College Website 1.0 Simple College Website v1.0 was discovered to contain an arbitrary file write vulnerability via the function file_put_contents(). | 9.8 |
| 2022-09-22 | CVE-2022-40932 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System 1.0 In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system. | 7.2 |
| 2022-09-21 | CVE-2022-36386 | Unrestricted Upload of File with Dangerous Type vulnerability in Soflyy WP ALL Import Authenticated Arbitrary Code Execution vulnerability in Soflyy Import any XML or CSV File to WordPress plugin <= 3.6.7 at WordPress. | 7.2 |
| 2022-09-21 | CVE-2022-40217 | Unrestricted Upload of File with Dangerous Type vulnerability in Xplodedthemes Wpide Authenticated (admin+) Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin <= 2.6 at WordPress. | 7.2 |
| 2022-09-20 | CVE-2022-38916 | Unrestricted Upload of File with Dangerous Type vulnerability in Pagekit 1.0.18 A file upload vulnerability exists in the storage feature of pagekit 1.0.18, which allows an attacker to upload malicious files | 9.8 |
| 2022-09-19 | CVE-2022-38881 | Unrestricted Upload of File with Dangerous Type vulnerability in D8S-Archives Project D8S-Archives 0.1.0 The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. | 9.8 |