Vulnerabilities > Unrestricted Upload of File with Dangerous Type
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-06-17 | CVE-2022-2111 | Unrestricted Upload of File with Dangerous Type vulnerability in Inventree Project Inventree Unrestricted Upload of File with Dangerous Type in GitHub repository inventree/inventree prior to 0.7.2. | 8.8 |
2022-06-16 | CVE-2021-41421 | Unrestricted Upload of File with Dangerous Type vulnerability in Maianmedia Maianaffiliate 1.0 A PHP code injection vulnerability in MaianAffiliate v.1.0 allows an authenticated attacker to gain RCE through the MaianAffiliate admin panel. | 4.8 |
2022-06-15 | CVE-2022-32433 | Unrestricted Upload of File with Dangerous Type vulnerability in Advanced School Management System Project Advanced School Management System 1.0 itsourcecode Advanced School Management System v1.0 is vulnerable to Arbitrary code execution via ip/school/view/all_teacher.php. | 6.5 |
2022-06-15 | CVE-2021-40940 | Unrestricted Upload of File with Dangerous Type vulnerability in Monstra Monstra 3.0.4 does not filter the case of php, which leads to an unrestricted file upload vulnerability. | 7.5 |
2022-06-14 | CVE-2021-42675 | Unrestricted Upload of File with Dangerous Type vulnerability in Kreado Kreasfero 1.5 Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. | 7.5 |
2022-06-13 | CVE-2022-0863 | Unrestricted Upload of File with Dangerous Type vulnerability in WP SVG Icons Project WP SVG Icons The WP SVG Icons WordPress plugin through 3.2.3 does not properly validate uploaded custom icon packs, allowing an high privileged user like an admin to upload a zip file containing malicious php code, leading to remote code execution. | 7.2 |
2022-06-13 | CVE-2022-31041 | Unrestricted Upload of File with Dangerous Type vulnerability in Maykinmedia Open Forms Open Forms is an application for creating and publishing smart forms. | 4.0 |
2022-06-09 | CVE-2017-20021 | Unrestricted Upload of File with Dangerous Type vulnerability in Solar-Log products A vulnerability, which was classified as critical, was found in Solare Solar-Log 2.8.4-56/3.5.2-85. | 7.5 |
2022-06-07 | CVE-2021-35532 | Unrestricted Upload of File with Dangerous Type vulnerability in ABB Txpert HUB Coretec 4 Firmware A vulnerability exists in the file upload validation part of Hitachi Energy TXpert Hub CoreTec 4 product. | 7.2 |
2022-06-06 | CVE-2022-30860 | Unrestricted Upload of File with Dangerous Type vulnerability in Fudforum FUDforum 3.1.2 is vulnerable to Remote Code Execution through Upload File feature of File Administration System in Admin Control Panel. | 6.5 |