Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-20 | CVE-2022-30887 | Unrestricted Upload of File with Dangerous Type vulnerability in Pharmacy Management System Project Pharmacy Management System 1.0 Pharmacy Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the component /php_action/editProductImage.php. | 9.8 |
| 2022-05-19 | CVE-2022-28927 | Unrestricted Upload of File with Dangerous Type vulnerability in Subconverter Project Subconverter 0.7.2 A remote code execution (RCE) vulnerability in Subconverter v0.7.2 allows attackers to execute arbitrary code via crafted config and url parameters. | 9.8 |
| 2022-05-19 | CVE-2021-41938 | Unrestricted Upload of File with Dangerous Type vulnerability in Shopxo 2.2.0 An issue was discovered in ShopXO CMS 2.2.0. | 7.2 |
| 2022-05-17 | CVE-2022-22482 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5 and 6.1.0.0 through 6.1.1.0 could allow an authenticated user to upload files that could fill up the filesystem and cause a denial of service. | 6.5 |
| 2022-05-17 | CVE-2022-30007 | Unrestricted Upload of File with Dangerous Type vulnerability in Gxcms Project Gxcms 1.5 GXCMS V1.5 has a file upload vulnerability in the background. | 7.2 |
| 2022-05-16 | CVE-2022-29351 | Unrestricted Upload of File with Dangerous Type vulnerability in Tiddlywiki Tiddlywiki5 5.2.2 An arbitrary file upload vulnerability in the file upload module of Tiddlywiki5 v5.2.2 allows attackers to execute arbitrary code via a crafted SVG file. | 9.8 |
| 2022-05-16 | CVE-2022-29353 | Unrestricted Upload of File with Dangerous Type vulnerability in Graphql-Upload Project Graphql-Upload 13.0.0 An arbitrary file upload vulnerability in the file upload module of Graphql-upload v13.0.0 allows attackers to execute arbitrary code via a crafted filename. | 9.8 |
| 2022-05-16 | CVE-2022-29354 | Unrestricted Upload of File with Dangerous Type vulnerability in Keystonejs Keystone 4.2.1 An arbitrary file upload vulnerability in the file upload module of Keystone v4.2.1 allows attackers to execute arbitrary code via a crafted file. | 9.8 |
| 2022-05-16 | CVE-2022-29622 | Unrestricted Upload of File with Dangerous Type vulnerability in Formidable Project Formidable 3.1.4 An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers to execute arbitrary code via a crafted filename. | 9.8 |
| 2022-05-16 | CVE-2022-29623 | Unrestricted Upload of File with Dangerous Type vulnerability in Connect-Multiparty Project Connect-Multiparty 2.2.0 An arbitrary file upload vulnerability in the file upload module of Connect-Multiparty v2.2.0 allows attackers to execute arbitrary code via a crafted PDF file. | 7.8 |