Vulnerabilities > Unrestricted Upload of File with Dangerous Type
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-08-12 | CVE-2022-2804 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPgurukul ZOO Management System A vulnerability was found in SourceCodester Zoo Management System. | 9.8 |
2022-07-22 | CVE-2022-34115 | Unrestricted Upload of File with Dangerous Type vulnerability in Dataease Project Dataease 1.11.1 DataEase v1.11.1 was discovered to contain a arbitrary file write vulnerability via the parameter dataSourceId. | 9.8 |
2022-07-18 | CVE-2022-1565 | Unrestricted Upload of File with Dangerous Type vulnerability in Wpallimport WP ALL Import 3.4.6 The plugin WP All Import is vulnerable to arbitrary file uploads due to missing file type validation via the wp_all_import_get_gz.php file in versions up to, and including, 3.6.7. | 7.2 |
2022-07-15 | CVE-2021-36461 | Unrestricted Upload of File with Dangerous Type vulnerability in Microweber 1.1.3 An Arbitrary File Upload vulnerability exists in Microweber 1.1.3 that allows attackers to getshell via the Settings Upload Picture section by uploading pictures with malicious code, user.ini. | 6.5 |
2022-07-13 | CVE-2022-32114 | Unrestricted Upload of File with Dangerous Type vulnerability in Strapi 4.1.12 An unrestricted file upload vulnerability in the Add New Assets function of Strapi 4.1.12 allows attackers to conduct XSS attacks via a crafted PDF file. | 8.8 |
2022-07-12 | CVE-2022-30216 | Unrestricted Upload of File with Dangerous Type vulnerability in Microsoft products Windows Server Service Tampering Vulnerability | 8.8 |
2022-07-12 | CVE-2022-31134 | Unrestricted Upload of File with Dangerous Type vulnerability in Zulip Server Zulip is an open-source team collaboration tool. | 4.0 |
2022-07-12 | CVE-2022-2297 | Unrestricted Upload of File with Dangerous Type vulnerability in Clinic'S Patient Management System Project Clinic'S Patient Management System 2.0 A vulnerability, which was classified as critical, was found in SourceCodester Clinics Patient Management System 2.0. | 8.8 |
2022-07-11 | CVE-2022-1952 | Unrestricted Upload of File with Dangerous Type vulnerability in Syntactics Free Booking Plugin for Hotels, Restaurant and CAR Rental The Free Booking Plugin for Hotels, Restaurant and Car Rental WordPress plugin before 1.1.16 suffers from insufficient input validation which leads to arbitrary file upload and subsequently to remote code execution. | 7.5 |
2022-07-07 | CVE-2021-29281 | Unrestricted Upload of File with Dangerous Type vulnerability in GFI Archiver File upload vulnerability in GFI Mail Archiver versions up to and including 15.1 via insecure implementation of Telerik Web UI plugin which is affected by CVE-2014-2217, and CVE-2017-11317. | 7.5 |