Vulnerabilities > Perfree

DATE	CVE	VULNERABILITY TITLE	RISK
2023-08-28	CVE-2023-40825	Unrestricted Upload of File with Dangerous Type vulnerability in Perfree Perfreeblog 3.1.2 An issue in Perfree PerfreeBlog v.3.1.2 allows a remote attacker to execute arbitrary code via crafted plugin listed in admin/plugin/access/list. network low complexity perfree CWE-434	7.2
2023-05-18	CVE-2023-30333	Unrestricted Upload of File with Dangerous Type vulnerability in Perfree Perfreeblog 3.1.2 An arbitrary file upload vulnerability in the component /admin/ThemeController.java of PerfreeBlog v3.1.2 allows attackers to execute arbitrary code via a crafted file. network low complexity perfree CWE-434 critical	9.8
2023-05-01	CVE-2023-29643	Cross-site Scripting vulnerability in Perfree Perfreeblog 3.1.2 Cross Site Scripting (XSS) vulnerability in PerfreeBlog 3.1.2 allows attackers to execute arbitrary code via the Post function. network low complexity perfree CWE-79	5.4
2023-03-15	CVE-2023-27757	Unrestricted Upload of File with Dangerous Type vulnerability in Perfree Perfreeblog 3.1.1 An arbitrary file upload vulnerability in the /admin/user/uploadImg component of PerfreeBlog v3.1.1 allows attackers to execute arbitrary code via a crafted JPG file. network low complexity perfree CWE-434 critical	9.8

Vulnerabilities > Perfree {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Perfree"}]}