Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2022-09-19 CVE-2022-38882 Unrestricted Upload of File with Dangerous Type vulnerability in D8S-Json Project D8S-Json 0.1.0
The d8s-json for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
d8s-json-project CWE-434
critical
 9.8
9.8
2022-09-19 CVE-2022-38883 Unrestricted Upload of File with Dangerous Type vulnerability in D8S-Math Project D8S-Math 0.1.0
The d8s-math for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
d8s-math-project CWE-434
critical
 9.8
9.8
2022-09-19 CVE-2022-38884 Unrestricted Upload of File with Dangerous Type vulnerability in D8S-Grammars Project D8S-Grammars 0.1.0
The d8s-grammars for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
d8s-grammars-project CWE-434
critical
 9.8
9.8
2022-09-19 CVE-2022-38885 Unrestricted Upload of File with Dangerous Type vulnerability in D8S-Netstrings Project D8S-Netstrings 0.1.0
The d8s-netstrings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
d8s-netstrings-project CWE-434
critical
 9.8
9.8
2022-09-19 CVE-2022-38886 Unrestricted Upload of File with Dangerous Type vulnerability in D8S-Xml Project D8S-Xml 0.1.0
The d8s-xml for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
d8s-xml-project CWE-434
critical
 9.8
9.8
2022-09-19 CVE-2022-38887 Unrestricted Upload of File with Dangerous Type vulnerability in D8S-Python Project D8S-Python 0.1.0
The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
d8s-python-project CWE-434
critical
 9.8
9.8
2022-09-19 CVE-2022-40431 Unrestricted Upload of File with Dangerous Type vulnerability in D8S-Pdfs Project D8S-Pdfs 0.1.0
The d8s-pdfs for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
d8s-pdfs-project CWE-434
critical
 9.8
9.8
2022-09-19 CVE-2022-40432 Unrestricted Upload of File with Dangerous Type vulnerability in D8S-Strings Project D8S-Strings 0.1.0
The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party.
network
low complexity
d8s-strings-project CWE-434
critical
 9.8
9.8
2022-09-16 CVE-2022-38877 Unrestricted Upload of File with Dangerous Type vulnerability in Garage Management System Project Garage Management System 1.0
Garage Management System v1.0 is vulnerable to Arbitrary code execution via ip/garage/php_action/editProductImage.php?id=1.
network
low complexity
garage-management-system-project CWE-434
7.2
7.2
2022-09-16 CVE-2022-38843 Unrestricted Upload of File with Dangerous Type vulnerability in Espocrm 7.1.8
EspoCRM version 7.1.8 is vulnerable to Unrestricted File Upload allowing attackers to upload malicious file with any extension to the server.
network
low complexity
espocrm CWE-434
8.8
8.8