| 2022-05-05 | CVE-2022-1411 | Unrestricted Upload of File with Dangerous Type vulnerability in Yetiforce Customer Relationship Management
Unrestructed file upload in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0. | 6.1 |
| 2022-05-04 | CVE-2022-28568 | Unrestricted Upload of File with Dangerous Type vulnerability in Simple Doctor'S Appointment System Project Simple Doctor'S Appointment System 1.0
Sourcecodester Doctor's Appointment System 1.0 is vulnerable to File Upload to RCE via Image upload from the administrator panel. | 9.8 |
| 2022-05-04 | CVE-2022-29347 | Unrestricted Upload of File with Dangerous Type vulnerability in Web@Rchiv Project Web@Rchiv 1.0
An arbitrary file upload vulnerability in Web@rchiv 1.0 allows attackers to execute arbitrary commands via a crafted PHP file. | 9.8 |
| 2022-05-03 | CVE-2022-29001 | Unrestricted Upload of File with Dangerous Type vulnerability in Springbootmovie Project Springbootmovie 1.0/1.1/1.2
In SpringBootMovie <=1.2, the uploaded file suffix parameter is not filtered, resulting in arbitrary file upload vulnerability | 7.2 |
| 2022-05-03 | CVE-2022-20743 | A vulnerability in the web management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to bypass security protections and upload malicious files to the affected system. | 8.8 |
| 2022-04-28 | CVE-2021-41921 | Unrestricted Upload of File with Dangerous Type vulnerability in Xxyopen Novel-Plus 3.6.1
novel-plus V3.6.1 allows unrestricted file uploads. | 9.8 |
| 2022-04-26 | CVE-2022-28525 | Unrestricted Upload of File with Dangerous Type vulnerability in Ed01-Cms Project Ed01-Cms 20180505
ED01-CMS v20180505 was discovered to contain an arbitrary file upload vulnerability via /admin/users.php?source=edit_user&id=1. | 8.8 |
| 2022-04-26 | CVE-2022-28528 | Unrestricted Upload of File with Dangerous Type vulnerability in Bloofox Bloofoxcms 0.5.2.1
bloofoxCMS v0.5.2.1 was discovered to contain an arbitrary file upload vulnerability via /admin/index.php?mode=content&page=media&action=edit. | 8.8 |
| 2022-04-26 | CVE-2022-27468 | Unrestricted Upload of File with Dangerous Type vulnerability in Monstaftp Monsta FTP 2.10.3
Monstaftp v2.10.3 was discovered to contain an arbitrary file upload which allows attackers to execute arbitrary code via a crafted file uploaded to the web server. | 9.8 |
| 2022-04-25 | CVE-2021-39040 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Planning Analytics Workspace 2.0
IBM Planning Analytics Workspace 2.0 could be vulnerable to malicious file upload by not validating the file types or sizes. | 8.0 |