Vulnerabilities > Unrestricted Upload of File with Dangerous Type
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-07-07 | CVE-2021-29281 | Unrestricted Upload of File with Dangerous Type vulnerability in GFI Archiver File upload vulnerability in GFI Mail Archiver versions up to and including 15.1 via insecure implementation of Telerik Web UI plugin which is affected by CVE-2014-2217, and CVE-2017-11317. | 7.5 |
2022-07-07 | CVE-2015-1784 | Unrestricted Upload of File with Dangerous Type vulnerability in Imagely Nextgen Gallery In nextgen-galery wordpress plugin before 2.0.77.3 there are two vulnerabilities which can allow an attacker to gain full access over the web application. | 6.5 |
2022-07-07 | CVE-2022-31854 | Unrestricted Upload of File with Dangerous Type vulnerability in Codologic Codoforum 5.1 Codoforum v5.1 was discovered to contain an arbitrary file upload vulnerability via the logo change option in the admin panel. | 7.2 |
2022-07-05 | CVE-2022-32413 | Unrestricted Upload of File with Dangerous Type vulnerability in Dice Project Dice 4.2.0 An arbitrary file upload vulnerability in Dice v4.2.0 allows attackers to execute arbitrary code via a crafted file. | 7.5 |
2022-07-04 | CVE-2022-2268 | Unrestricted Upload of File with Dangerous Type vulnerability in Soflyy WP ALL Import The Import any XML or CSV File to WordPress plugin before 3.6.8 accepts all zip files and automatically extracts the zip file without validating the extracted file type. | 7.2 |
2022-07-01 | CVE-2022-31943 | Unrestricted Upload of File with Dangerous Type vulnerability in Mingsoft Mcms 5.2.8 MCMS v5.2.8 was discovered to contain an arbitrary file upload vulnerability. | 7.5 |
2022-06-30 | CVE-2021-37770 | Unrestricted Upload of File with Dangerous Type vulnerability in Nucleuscms Nucleus CMS 3.71 Nucleus CMS v3.71 is affected by a file upload vulnerability. | 6.5 |
2022-06-27 | CVE-2022-32994 | Unrestricted Upload of File with Dangerous Type vulnerability in Halo 1.5.3 Halo CMS v1.5.3 was discovered to contain an arbitrary file upload vulnerability via the component /api/admin/attachments/upload. | 7.5 |
2022-06-27 | CVE-2022-31086 | Unrestricted Upload of File with Dangerous Type vulnerability in multiple products LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. | 6.0 |
2022-06-27 | CVE-2022-2212 | Unrestricted Upload of File with Dangerous Type vulnerability in Library Management System Project Library Management System 1.0 A vulnerability was found in SourceCodester Library Management System 1.0. | 6.5 |