Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-27 | CVE-2022-37346 | Unrestricted Upload of File with Dangerous Type vulnerability in Ec-Cube Product Image Bulk Upload 1.0.0/4.1.0 EC-CUBE plugin 'Product Image Bulk Upload Plugin' 1.0.0 and 4.1.0 contains an insufficient verification vulnerability when uploading files. | 9.8 |
| 2022-09-27 | CVE-2022-40878 | Unrestricted Upload of File with Dangerous Type vulnerability in Exam Reviewer Management System Project Exam Reviewer Management System 1.0 In Exam Reviewer Management System 1.0, an authenticated attacker can upload a web-shell php file in profile page to achieve Remote Code Execution (RCE). | 8.8 |
| 2022-09-26 | CVE-2022-40050 | Unrestricted Upload of File with Dangerous Type vulnerability in Zfile 4.1.1 ZFile v4.1.1 was discovered to contain an arbitrary file upload vulnerability via the component /file/upload/1. | 9.8 |
| 2022-09-26 | CVE-2022-40924 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "save_animal" file of the "Animals" module in the background management system. | 7.2 |
| 2022-09-26 | CVE-2022-40925 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "save_event" file of the "Events" module in the background management system. | 7.2 |
| 2022-09-23 | CVE-2022-3257 | Unrestricted Upload of File with Dangerous Type vulnerability in Mattermost Server Mattermost version 7.1.x and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service. | 6.5 |
| 2022-09-22 | CVE-2022-40087 | Unrestricted Upload of File with Dangerous Type vulnerability in Simple College Website Project Simple College Website 1.0 Simple College Website v1.0 was discovered to contain an arbitrary file write vulnerability via the function file_put_contents(). | 9.8 |
| 2022-09-22 | CVE-2022-40932 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System 1.0 In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system. | 7.2 |
| 2022-09-21 | CVE-2022-36386 | Unrestricted Upload of File with Dangerous Type vulnerability in Soflyy WP ALL Import Authenticated Arbitrary Code Execution vulnerability in Soflyy Import any XML or CSV File to WordPress plugin <= 3.6.7 at WordPress. | 7.2 |
| 2022-09-21 | CVE-2022-40217 | Unrestricted Upload of File with Dangerous Type vulnerability in Xplodedthemes Wpide Authenticated (admin+) Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin <= 2.6 at WordPress. | 7.2 |