Vulnerabilities > Unrestricted Upload of File with Dangerous Type
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-11-01 | CVE-2022-43085 | Unrestricted Upload of File with Dangerous Type vulnerability in Codeastro Restaurant POS System 1.0 An arbitrary file upload vulnerability in add_product.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | 7.2 |
2022-10-31 | CVE-2022-41681 | Unrestricted Upload of File with Dangerous Type vulnerability in Formalms There is a vulnerability on Forma LMS version 3.1.0 and earlier that could allow an authenticated attacker (with the role of student) to privilege escalate in order to upload a Zip file through the SCORM importer feature. | 8.8 |
2022-10-31 | CVE-2022-42925 | Unrestricted Upload of File with Dangerous Type vulnerability in Formalms There is a vulnerability on Forma LMS version 3.1.0 and earlier that could allow an authenticated attacker (with the role of student) to privilege escalate in order to upload a Zip file through the plugin upload component. | 8.8 |
2022-10-31 | CVE-2022-40471 | Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Clinic'S Patient Management System 1.0 Remote Code Execution in Clinic's Patient Management System v 1.0 allows Attacker to Upload arbitrary php webshell via profile picture upload functionality in users.php | 9.8 |
2022-10-31 | CVE-2022-3771 | Unrestricted Upload of File with Dangerous Type vulnerability in Easyiicms A vulnerability, which was classified as critical, has been found in easyii CMS. | 9.8 |
2022-10-28 | CVE-2022-43283 | Unrestricted Upload of File with Dangerous Type vulnerability in Webassembly Wabt 1.0.29 wasm2c v1.0.29 was discovered to contain an abort in CWriter::Write. | 5.5 |
2022-10-28 | CVE-2022-43231 | Unrestricted Upload of File with Dangerous Type vulnerability in Canteen Management System Project Canteen Management System 1.0 Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/manage_website.php. | 7.2 |
2022-10-28 | CVE-2022-37426 | Unrestricted Upload of File with Dangerous Type vulnerability in Opennebula Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Injection. | 7.5 |
2022-10-28 | CVE-2022-43275 | Unrestricted Upload of File with Dangerous Type vulnerability in Canteen Management System Project Canteen Management System 1.0 Canteen Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /youthappam/php_action/editProductImage.php. | 7.2 |
2022-10-28 | CVE-2021-38397 | Unrestricted Upload of File with Dangerous Type vulnerability in Honeywell products Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file uploads, which may allow an attacker to remotely execute arbitrary code and cause a denial-of-service condition. | 10.0 |