Vulnerabilities > Unrestricted Upload of File with Dangerous Type

DATE CVE VULNERABILITY TITLE RISK
2022-06-02 CVE-2022-30821 Unrestricted Upload of File with Dangerous Type vulnerability in Wedding Management System Project Wedding Management System 1.0
In Wedding Management System v1.0, the editing function of the "Services" module in the background management system has an arbitrary file upload vulnerability in the picture upload point of "package_edit.php" file.
8.8
2022-06-02 CVE-2022-30822 Unrestricted Upload of File with Dangerous Type vulnerability in Wedding Management System Project Wedding Management System 1.0
In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_profile.php" file.
8.8
2022-05-26 CVE-2022-29632 Unrestricted Upload of File with Dangerous Type vulnerability in Roncoo Roncoo-Education 9.0.0
An arbitrary file upload vulnerability in the component /course/api/upload/pic of Roncoo Education v9.0.0 allows attackers to execute arbitrary code via a crafted file.
network
low complexity
roncoo CWE-434
critical
9.8
2022-05-26 CVE-2022-29637 Unrestricted Upload of File with Dangerous Type vulnerability in Iminho Mindoc 2.1
An arbitrary file upload vulnerability in Mindoc v2.1-beta.5 allows attackers to execute arbitrary commands via a crafted Zip file.
local
low complexity
iminho CWE-434
7.8
2022-05-25 CVE-2022-29651 Unrestricted Upload of File with Dangerous Type vulnerability in Online Food Ordering System Project Online Food Ordering System 1.0
An arbitrary file upload vulnerability in the Select Image function of Online Food Ordering System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
7.2
2022-05-24 CVE-2021-42654 Unrestricted Upload of File with Dangerous Type vulnerability in Sscms Siteserver CMS
SiteServer CMS < V5.1 is affected by an unrestricted upload of a file with dangerous type (getshell), which could be used to execute arbitrary code.
network
low complexity
sscms CWE-434
critical
9.8
2022-05-24 CVE-2022-1837 Unrestricted Upload of File with Dangerous Type vulnerability in Home Clean Services Management System Project Home Clean Services Management System 1.0
A vulnerability was found in Home Clean Services Management System 1.0.
7.2
2022-05-23 CVE-2022-1811 Unrestricted Upload of File with Dangerous Type vulnerability in Publify Project Publify
Unrestricted Upload of File with Dangerous Type in GitHub repository publify/publify prior to 9.2.9.
network
low complexity
publify-project CWE-434
5.4
2022-05-21 CVE-2022-1752 Unrestricted Upload of File with Dangerous Type vulnerability in Trudesk Project Trudesk
Unrestricted Upload of File with Dangerous Type in GitHub repository polonel/trudesk prior to 1.2.2.
network
low complexity
trudesk-project CWE-434
8.0
2022-05-20 CVE-2022-28104 Unrestricted Upload of File with Dangerous Type vulnerability in Foxit PDF Editor 11.3.1
Foxit PDF Editor v11.3.1 was discovered to contain an arbitrary file upload vulnerability.
network
low complexity
foxit CWE-434
critical
9.8