Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

CVEs (4,107)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-37741 1Zohocorp 1Manageengine Admanager Plus Jun 17, 2026 Sep 21, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 ManageEngine ADManager Plus before 7111 has Pre-authentication RCE vulnerabilities.
CVE-2021-24663 1Simple Schools Staff Directory Project 1Simple Schools Staff Directory Jun 17, 2026 Sep 20, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 The Simple Schools Staff Directory WordPress plugin through 1.1 does not validate uploaded logo pictures to ensure that are indeed images, allowing high privilege users such as admin to upload arbitrary file like PHP, le...Show more The Simple Schools Staff Directory WordPress plugin through 1.1 does not validate uploaded logo pictures to ensure that are indeed images, allowing high privilege users such as admin to upload arbitrary file like PHP, leading to RCEShow less
CVE-2020-21483 1Jizhicms 1Jizhicms Jun 17, 2026 Sep 15, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 An arbitrary file upload vulnerability in Jizhicms v1.5 allows attackers to execute arbitrary code via a crafted .jpg file which is later changed to a PHP file.
CVE-2020-21481 1Rgcms Project 1Rgcms Jun 17, 2026 Sep 15, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 An arbitrary file upload vulnerability in RGCMS v1.06 allows attackers to execute arbitrary code via a crafted .txt file which is later changed to a PHP file.
CVE-2020-21322 1Feehi 1Feehicms Jun 17, 2026 Sep 15, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An arbitrary file upload vulnerability in Feehi CMS v2.0.8 and below allows attackers to execute arbitrary code via a crafted PHP file.
CVE-2021-33698 1Sap 1Business One Jun 17, 2026 Sep 15, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 SAP Business One, version - 10.0, allows an attacker with business authorization to upload any files (including script files) without the proper file format validation.
CVE-2021-40845 1Zenitel 1Alphacom Xe Audio Server Jun 17, 2026 Sep 15, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 The web part of Zenitel AlphaCom XE Audio Server through 11.2.3.10, called AlphaWeb XE, does not restrict file upload in the Custom Scripts section at php/index.php. Neither the content nor extension of the uploaded file...Show more The web part of Zenitel AlphaCom XE Audio Server through 11.2.3.10, called AlphaWeb XE, does not restrict file upload in the Custom Scripts section at php/index.php. Neither the content nor extension of the uploaded files is checked, allowing execution of PHP code under the /cmd directory.Show less
CVE-2021-36582 1Kooboo 1Kooboo Cms Jun 17, 2026 Sep 14, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In Kooboo CMS 2.1.1.0, it is possible to upload a remote shell (e.g., aspx) to the server and then call upon it to receive a reverse shell from the victim server. The files are uploaded to /Content/Template/root/reverse-...Show more In Kooboo CMS 2.1.1.0, it is possible to upload a remote shell (e.g., aspx) to the server and then call upon it to receive a reverse shell from the victim server. The files are uploaded to /Content/Template/root/reverse-shell.aspx and can be simply triggered by browsing that URL.Show less
CVE-2021-36581 1Kooboo 1Kooboo Cms Jun 17, 2026 Sep 14, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Kooboo CMS 2.1.1.0 is vulnerable to Insecure file upload. It is possible to upload any file extension to the server. The server does not verify the extension of the file and the tester was able to upload an aspx to the s...Show more Kooboo CMS 2.1.1.0 is vulnerable to Insecure file upload. It is possible to upload any file extension to the server. The server does not verify the extension of the file and the tester was able to upload an aspx to the server.Show less
CVE-2020-20672 1Kitesky 1Kitecms Jun 17, 2026 Sep 13, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 An arbitrary file upload vulnerability in /admin/upload/uploadfile of KiteCMS V1.1 allows attackers to getshell via a crafted PHP file.
CVE-2020-20670 1Zkea 1Zkeacms Jun 17, 2026 Sep 13, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An arbitrary file upload vulnerability in /admin/media/upload of ZKEACMS V3.2.0 allows attackers to execute arbitrary code via a crafted HTML file.
CVE-2021-24620 1Simple E Commerce Shopping Cart Project 1Simple E Commerce Shopping Cart Jun 17, 2026 Sep 13, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The WordPress Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin through 2.2.5 does not check for the uploaded Downloadable Digital product file, allowing any file, such as PHP to be uploaded by a...Show more The WordPress Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin through 2.2.5 does not check for the uploaded Downloadable Digital product file, allowing any file, such as PHP to be uploaded by an administrator. Furthermore, as there is no CSRF in place, attackers could also make a logged admin upload a malicious PHP file, which would lead to RCEShow less
CVE-2021-24493 1Ingenesis 1Shopp Jun 17, 2026 Sep 13, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The shopp_upload_file AJAX action of the Shopp WordPress plugin through 1.4, available to both unauthenticated and authenticated user does not have any security measure in place to prevent upload of malicious files, such...Show more The shopp_upload_file AJAX action of the Shopp WordPress plugin through 1.4, available to both unauthenticated and authenticated user does not have any security measure in place to prevent upload of malicious files, such as PHP, allowing unauthenticated users to upload arbitrary files and leading to RCEShow less
CVE-2021-24490 1Email Artillery Project 1Email Artillery Jun 17, 2026 Sep 13, 2021 N/A· v4 6.8 MEDIUM· v3 6.0 MEDIUM· v2 The Email Artillery (MASS EMAIL) WordPress plugin through 4.1 does not properly check the uploaded files from the Import Emails feature, allowing arbitrary files to be uploaded. Furthermore, the plugin is also lacking an...Show more The Email Artillery (MASS EMAIL) WordPress plugin through 4.1 does not properly check the uploaded files from the Import Emails feature, allowing arbitrary files to be uploaded. Furthermore, the plugin is also lacking any CSRF check, allowing such issue to be exploited via a CSRF attack as well. However, due to the presence of a .htaccess, denying access to everything in the folder the file is uploaded to, the malicious uploaded file will only be accessible on Web Servers such as Nginx/IISShow less
CVE-2020-19267 1Dswjcms Project 1Dswjcms Jun 17, 2026 Sep 9, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue in index.php/Dswjcms/Basis/resources of Dswjcms 1.6.4 allows attackers to execute arbitrary code via uploading a crafted PHP file.
CVE-2021-36440 1Showdoc 1Showdoc Jun 17, 2026 Sep 8, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Unrestricted File Upload in ShowDoc v2.9.5 allows remote attackers to execute arbitrary code via the 'file_url' parameter in the component AdminUpdateController.class.php'.
CVE-2020-19138 1Dotcms 1Dotcms Jun 17, 2026 Sep 8, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Unrestricted Upload of File with Dangerous Type in DotCMS v5.2.3 and earlier allow remote attackers to execute arbitrary code via the component "/src/main/java/com/dotmarketing/filters/CMSFilter.java".
CVE-2021-38841 1Simple Water Refilling Station Management System Project 1Simple Water Refilling Station Management System Jun 17, 2026 Sep 7, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Remote Code Execution can occur in Simple Water Refilling Station Management System 1.0 via the System Logo option on the system_info page in classes/SystemSettings.php with an update_settings action.
CVE-2021-40531 1Sketch 1Sketch Jun 17, 2026 Sep 6, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Sketch before 75 allows library feeds to be used to bypass file quarantine. Files are automatically downloaded and opened, without the com.apple.quarantine extended attribute. This results in remote code execution, as de...Show more Sketch before 75 allows library feeds to be used to bypass file quarantine. Files are automatically downloaded and opened, without the com.apple.quarantine extended attribute. This results in remote code execution, as demonstrated by CommandString in a terminal profile to Terminal.app.Show less
CVE-2021-40524 1Pureftpd 1Pure Ftpd Jun 17, 2026 Sep 5, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Pure-FTPd before 1.0.50, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occurs because a certain...Show more In Pure-FTPd before 1.0.50, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occurs because a certain greater-than-zero test does not anticipate an initial -1 value. (Versions 1.0.23 through 1.0.49 are affected.)Show less

Previous 1...158159160...206 Next