Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-13 | CVE-2021-42967 | Unrestricted Upload of File with Dangerous Type vulnerability in Xxyopen Novel-Plus Unrestricted file upload in /novel-admin/src/main/java/com/java2nb/common/controller/FileController.java in novel-plus all versions allows allows an attacker to upload malicious JSP files. | 9.8 |
| 2022-05-12 | CVE-2021-27771 | Unrestricted Upload of File with Dangerous Type vulnerability in Hcltech Sametime 11.6 User SID can be modified resulting in an Arbitrary File Upload or deletion of directories causing a Denial of Service. | 6.5 |
| 2022-05-12 | CVE-2022-21809 | Unrestricted Upload of File with Dangerous Type vulnerability in Inhandnetworks Inrouter302 Firmware 3.5.37/3.5.4 A file write vulnerability exists in the httpd upload.cgi functionality of InHand Networks InRouter302 V3.5.4. | 5.5 |
| 2022-05-11 | CVE-2022-30448 | Unrestricted Upload of File with Dangerous Type vulnerability in Hospital Management System Project Hospital Management System 1.0 Hospital Management System in PHP with Source Code (HMS) 1.0 was discovered to contain a File upload vulnerability in treatmentrecord.php. | 7.5 |
| 2022-05-11 | CVE-2022-29318 | Unrestricted Upload of File with Dangerous Type vulnerability in CAR Rental Management System Project CAR Rental Management System 1.0 An arbitrary file upload vulnerability in the New Entry module of Car Rental Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | 6.5 |
| 2022-05-11 | CVE-2022-29655 | Unrestricted Upload of File with Dangerous Type vulnerability in Wedding Management System Project Wedding Management System 1.0 An arbitrary file upload vulnerability in the Upload Photos module of Wedding Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | 6.5 |
| 2022-05-11 | CVE-2020-19228 | Unrestricted Upload of File with Dangerous Type vulnerability in Bludit 3.13.0 An issue was found in bludit v3.13.0, unsafe implementation of the backup plugin allows attackers to upload arbitrary files. | 9.0 |
| 2022-05-10 | CVE-2021-42645 | Unrestricted Upload of File with Dangerous Type vulnerability in Cmsimple-Xh Cmsimple XH 1.7.4 CMSimple_XH 1.7.4 is affected by a remote code execution (RCE) vulnerability. | 10.0 |
| 2022-05-05 | CVE-2022-28120 | Unrestricted Upload of File with Dangerous Type vulnerability in Rainier Open Virtual Simulation Experiment Teaching Management Platform 2.0 Beijing Runnier Network Technology Co., Ltd Open virtual simulation experiment teaching management platform software 2.0 has a file upload vulnerability, which can be exploited by an attacker to gain control of the server. | 7.5 |
| 2022-05-05 | CVE-2022-28606 | Unrestricted Upload of File with Dangerous Type vulnerability in Bosscms 1.0.0 An arbitrary file upload vulnerability exists in Wenzhou Huoyin Information Technology Co., Ltd. | 7.5 |