Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2024-10-15 CVE-2024-9975 Unrestricted Upload of File with Dangerous Type vulnerability in Rems Drag and Drop Image Upload 1.0
A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0.
network
low complexity
rems CWE-434
8.8
2024-10-15 CVE-2024-9985 Unrestricted Upload of File with Dangerous Type vulnerability in Ragic Enterprise Cloud Database
Enterprise Cloud Database from Ragic does not properly validate the file type for uploads.
network
low complexity
ragic CWE-434
critical
9.8
2024-10-15 CVE-2024-9981 Unrestricted Upload of File with Dangerous Type vulnerability in Formosasoft Ee-Class
The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing remote attackers with regular privileges to upload a malicious PHP file first and then exploit this vulnerability to include the file, resulting in arbitrary code execution on the server.
network
low complexity
formosasoft CWE-434
8.8
2024-10-10 CVE-2024-9815 Unrestricted Upload of File with Dangerous Type vulnerability in Codezips Tourist Management System 1.0
A vulnerability has been found in Codezips Tourist Management System 1.0 and classified as critical.
network
low complexity
codezips CWE-434
7.2
2024-10-10 CVE-2024-9816 Unrestricted Upload of File with Dangerous Type vulnerability in Codezips Tourist Management System 1.0
A vulnerability was found in Codezips Tourist Management System 1.0 and classified as critical.
network
low complexity
codezips CWE-434
7.2
2024-10-10 CVE-2024-9794 Unrestricted Upload of File with Dangerous Type vulnerability in Codezips Online Shopping Portal 1.0
A vulnerability, which was classified as critical, has been found in Codezips Online Shopping Portal 1.0.
network
low complexity
codezips CWE-434
critical
9.8
2024-10-09 CVE-2024-45136 Unrestricted Upload of File with Dangerous Type vulnerability in Adobe Incopy
InCopy versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in arbitrary code execution by an attacker.
local
low complexity
adobe CWE-434
7.8
2024-10-09 CVE-2024-45137 Unrestricted Upload of File with Dangerous Type vulnerability in Adobe Indesign
InDesign Desktop versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in arbitrary code execution.
local
low complexity
adobe CWE-434
7.8
2024-10-09 CVE-2024-47423 Unrestricted Upload of File with Dangerous Type vulnerability in Adobe Framemaker
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in arbitrary code execution.
local
low complexity
adobe CWE-434
7.8
2024-10-08 CVE-2024-37179 Unrestricted Upload of File with Dangerous Type vulnerability in SAP Businessobjects Business Intelligence 2025/420/430
SAP BusinessObjects Business Intelligence Platform allows an authenticated user to send a specially crafted request to the Web Intelligence Reporting Server to download any file from the machine hosting the service, causing high impact on confidentiality of the application.
network
low complexity
sap CWE-434
6.5