Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-19 | CVE-2022-39301 | Unrestricted Upload of File with Dangerous Type vulnerability in Sra-Admin Project Sra-Admin 1.1.1 sra-admin is a background rights management system that separates the front and back end. | 5.4 |
| 2022-10-18 | CVE-2022-41537 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Tours & Travels Management System Project Online Tours & Travels Management System 1.0 Online Tours & Travels Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /user_operations/profile.php. | 7.2 |
| 2022-10-18 | CVE-2022-41504 | Unrestricted Upload of File with Dangerous Type vulnerability in Billing System Project Billing System 1.0 An arbitrary file upload vulnerability in the component /php_action/editProductImage.php of Billing System Project v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | 7.2 |
| 2022-10-17 | CVE-2020-8974 | Unrestricted Upload of File with Dangerous Type vulnerability in Zigor ZGR Tps200 NG Firmware 2.00 In ZGR TPS200 NG 2.00 firmware version and 1.01 hardware version, the firmware upload process does not perform any type of restriction. | 9.1 |
| 2022-10-17 | CVE-2022-3552 | Unrestricted Upload of File with Dangerous Type vulnerability in Boxbilling Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1. | 7.2 |
| 2022-10-17 | CVE-2022-32176 | Unrestricted Upload of File with Dangerous Type vulnerability in Gin-Vue-Admin Project Gin-Vue-Admin In "Gin-Vue-Admin", versions v2.5.1 through v2.5.3b are vulnerable to Unrestricted File Upload that leads to execution of javascript code, through the "Compress Upload" functionality to the Media Library. | 9.0 |
| 2022-10-17 | CVE-2022-42029 | Unrestricted Upload of File with Dangerous Type vulnerability in Chamilo 1.11.16 Chamilo 1.11.16 is affected by an authenticated local file inclusion vulnerability which allows authenticated users with access to 'big file uploads' to copy/move files from anywhere in the file system into the web directory. | 8.8 |
| 2022-10-17 | CVE-2022-42154 | Unrestricted Upload of File with Dangerous Type vulnerability in 74Cms 74Cmsse 3.13.0 An arbitrary file upload vulnerability in the component /apiadmin/upload/attach of 74cmsSE v3.13.0 allows attackers to execute arbitrary code via a crafted PHP file. | 9.8 |
| 2022-10-17 | CVE-2022-3549 | Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Simple Cold Storage Management System 1.0 A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. | 7.2 |
| 2022-10-14 | CVE-2022-32177 | Unrestricted Upload of File with Dangerous Type vulnerability in Gin-Vue-Admin Project Gin-Vue-Admin In "Gin-Vue-Admin", versions v2.5.1 through v2.5.3beta are vulnerable to Unrestricted File Upload that leads to execution of javascript code, through the 'Normal Upload' functionality to the Media Library. | 9.0 |