Vulnerabilities > Unrestricted Upload of File with Dangerous Type
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-13 | CVE-2021-43117 | Unrestricted Upload of File with Dangerous Type vulnerability in Fastadmin 1.2.1 fastadmin v1.2.1 is affected by a file upload vulnerability which allows arbitrary code execution through shell access. | 10.0 |
2021-12-10 | CVE-2021-27984 | Unrestricted Upload of File with Dangerous Type vulnerability in Pluck-Cms Pluck 4.7.15 In Pluck-4.7.15 admin background a remote command execution vulnerability exists when uploading files. | 7.5 |
2021-12-08 | CVE-2021-36719 | Unrestricted Upload of File with Dangerous Type vulnerability in Cybonet Mail Secure PineApp - Mail Secure - The attacker must be logged in as a user to the Pineapp system. | 9.0 |
2021-12-08 | CVE-2021-27860 | Unrestricted Upload of File with Dangerous Type vulnerability in Fatpipeinc Ipvpn Firmware and Warp Firmware A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. | 8.8 |
2021-12-07 | CVE-2021-42125 | Unrestricted Upload of File with Dangerous Type vulnerability in Ivanti Avalanche An unrestricted file upload vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to write dangerous files. | 6.5 |
2021-12-06 | CVE-2021-43936 | Unrestricted Upload of File with Dangerous Type vulnerability in Webhmi Firmware 3.5/4.0 The software allows the attacker to upload or transfer files of dangerous types to the WebHMI portal, that may be automatically processed within the product's environment or lead to arbitrary code execution. | 10.0 |
2021-12-03 | CVE-2021-23562 | Unrestricted Upload of File with Dangerous Type vulnerability in Tiny Plupload This affects the package plupload before 2.3.9. | 6.8 |
2021-12-02 | CVE-2020-29176 | Unrestricted Upload of File with Dangerous Type vulnerability in Zblogcn Z-Blogphp 1.6.1.2100 An arbitrary file upload vulnerability in Z-BlogPHP v1.6.1.2100 allows attackers to execute arbitrary code via a crafted JPG file. | 6.8 |
2021-11-30 | CVE-2021-42099 | Unrestricted Upload of File with Dangerous Type vulnerability in Zohocorp Manageengine M365 Manager Plus Zoho ManageEngine M365 Manager Plus before 4421 is vulnerable to file-upload remote code execution. | 7.5 |
2021-11-30 | CVE-2021-42123 | Unrestricted Upload of File with Dangerous Type vulnerability in Businessdnasolutions Topease Unrestricted File Upload in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version <= 7.1.27 in the File Upload Functions allows an authenticated remote attacker with Upload privileges to upload files with any file type, enabling client-side attacks. | 8.8 |