Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-01 | CVE-2022-34154 | Unrestricted Upload of File with Dangerous Type vulnerability in Ideastocode Enable Svg, Webp & ICO Upload 1.0.0/1.0.1 Authenticated (author or higher user role) Arbitrary File Upload vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress. | 8.8 |
| 2022-07-29 | CVE-2022-34496 | Unrestricted Upload of File with Dangerous Type vulnerability in Hiby R3 PRO Firmware and Hiby R3 PRO Saber Firmware Hiby R3 PRO firmware v1.5 to v1.7 was discovered to contain a file upload vulnerability via the file upload feature. | 9.8 |
| 2022-07-28 | CVE-2022-34578 | Unrestricted Upload of File with Dangerous Type vulnerability in Opensourcepos Open Source Point of Sale 3.3.7 Open Source Point of Sale v3.3.7 was discovered to contain an arbitrary file upload vulnerability via the Update Branding Settings page. | 7.2 |
| 2022-07-27 | CVE-2022-34120 | Unrestricted Upload of File with Dangerous Type vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the module editing function at /pages/activity/activity.php. | 7.2 |
| 2022-07-27 | CVE-2022-34549 | Unrestricted Upload of File with Dangerous Type vulnerability in Sims Project Sims 1.0 Sims v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /uploadServlet. | 8.8 |
| 2022-07-27 | CVE-2022-34971 | Unrestricted Upload of File with Dangerous Type vulnerability in Feehi CMS 2.1.1 An arbitrary file upload vulnerability in the Advertising Management module of Feehi CMS v2.1.1 allows attackers to execute arbitrary code via a crafted PHP file. | 8.8 |
| 2022-07-25 | CVE-2022-34965 | Unrestricted Upload of File with Dangerous Type vulnerability in Openteknik Open Source Social Network 6.3 OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain an arbitrary file upload vulnerability via the component /ossn/administrator/com_installer. | 7.2 |
| 2022-07-22 | CVE-2022-34115 | Unrestricted Upload of File with Dangerous Type vulnerability in Dataease Project Dataease 1.11.1 DataEase v1.11.1 was discovered to contain a arbitrary file write vulnerability via the parameter dataSourceId. | 9.8 |
| 2022-07-21 | CVE-2022-28700 | Unrestricted Upload of File with Dangerous Type vulnerability in Givewp Authenticated Arbitrary File Creation via Export function vulnerability in GiveWP's GiveWP plugin <= 2.20.2 at WordPress. | 7.2 |
| 2022-07-19 | CVE-2022-34024 | Unrestricted Upload of File with Dangerous Type vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the resident module editing function at /bmis/pages/resident/resident.php. | 7.2 |