Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

CVEs (4,107)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-14451 1Repetier Server 1Repetier Server Jun 17, 2026 Oct 25, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 RepetierServer.exe in Repetier-Server 0.8 through 0.91 does not properly validate the XML data structure provided when uploading a new printer configuration. When this is combined with CVE-2019-14450, an attacker can upl...Show more RepetierServer.exe in Repetier-Server 0.8 through 0.91 does not properly validate the XML data structure provided when uploading a new printer configuration. When this is combined with CVE-2019-14450, an attacker can upload an "external command" configuration as a printer configuration, and achieve remote code execution. After exploitation, loading of the external command configuration is dependent on a system reboot or service restart.Show less
CVE-2019-18417 1Sourcecodester 1Restaurant Management System Jun 17, 2026 Oct 24, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-sup...Show more Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-supplied input, e.g., "add a new food" allows .php files.Show less
CVE-2019-11021 1Schlix 1Cms Jun 17, 2026 Oct 24, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 admin/app/mediamanager in Schlix CMS 2.1.8-7 allows Authenticated Unrestricted File Upload, leading to remote code execution. NOTE: "While inadvertently allowing a PHP file to be uploaded via Media Manager was an oversig...Show more admin/app/mediamanager in Schlix CMS 2.1.8-7 allows Authenticated Unrestricted File Upload, leading to remote code execution. NOTE: "While inadvertently allowing a PHP file to be uploaded via Media Manager was an oversight, it still requires an admin permission. We think it's pretty rare for an administrator to exploit a bug on his/her own site to own his/her own site.Show less
CVE-2015-9499 1Themepunch 1Showbiz Pro Nov 21, 2024 Oct 22, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The Showbiz Pro plugin through 1.7.1 for WordPress has PHP code execution by uploading a .php file within a ZIP archive.
CVE-2019-16530 1Sonatype 2Nexus Iq Server Nexus Repository Manager Jun 17, 2026 Oct 21, 2019 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Sonatype Nexus Repository Manager 2.x before 2.14.15 and 3.x before 3.19, and IQ Server before 72, has remote code execution.
CVE-2019-16700 1Slub Dresden 1Slub Events Jun 17, 2026 Oct 16, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The slub_events (aka SLUB: Event Registration) extension through 3.0.2 for TYPO3 allows uploading of arbitrary files to the webserver. For versions 1.2.2 and below, this results in Remote Code Execution. In versions late...Show more The slub_events (aka SLUB: Event Registration) extension through 3.0.2 for TYPO3 allows uploading of arbitrary files to the webserver. For versions 1.2.2 and below, this results in Remote Code Execution. In versions later than 1.2.2, this can result in Denial of Service, since the web space can be filled up with arbitrary files.Show less
CVE-2019-17536 1Gilacms 1Gila Cms Jun 17, 2026 Oct 13, 2019 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 Gila CMS through 1.11.4 allows Unrestricted Upload of a File with a Dangerous Type via the moveAction function in core/controllers/fm.php. The attacker needs to use admin/media_upload and fm/move.
CVE-2019-17490 1Jnoj 1Jiangnan Online Judge Jun 17, 2026 Oct 10, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 app\modules\polygon\controllers\ProblemController in Jiangnan Online Judge (aka jnoj) 0.8.0 allows arbitrary file upload, as demonstrated by PHP code (with a .php filename but the image/png content type) to the web/polyg...Show more app\modules\polygon\controllers\ProblemController in Jiangnan Online Judge (aka jnoj) 0.8.0 allows arbitrary file upload, as demonstrated by PHP code (with a .php filename but the image/png content type) to the web/polygon/problem/tests URI.Show less
CVE-2015-9479 1Advancedcustomfields 1Acf Fronted Display Nov 21, 2024 Oct 10, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The ACF-Frontend-Display plugin through 2015-07-03 for WordPress has arbitrary file upload via an action=upload request to js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php.
CVE-2015-9471 1Digitalzoomstudio 1Zoomsounds Nov 21, 2024 Oct 10, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The dzs-zoomsounds plugin through 2.0 for WordPress has admin/upload.php arbitrary file upload.
CVE-2018-21024 1Centreon 1Centreon Nov 21, 2024 Oct 8, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 licenseUpload.php in Centreon Web before 2.8.27 allows attackers to upload arbitrary files via a POST request.
CVE-2019-17352 1Jfinal 1Jfinal Jun 17, 2026 Oct 8, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile() function: one can upload any type of file. For example, a .jsp file may be stored and almost immediately d...Show more In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile() function: one can upload any type of file. For example, a .jsp file may be stored and almost immediately deleted, but this deletion step does not occur for certain exceptions.Show less
CVE-2019-14657 1Yeahlink 3T49g Firmware T58v FirmwareVp59 Firmware Jun 17, 2026 Oct 8, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Yealink phones through 2019-08-04 have an issue with OpenVPN file upload. They execute tar as root to extract files, but do not validate the extraction directory. Creating a tar file with ../../../../ allows replacement...Show more Yealink phones through 2019-08-04 have an issue with OpenVPN file upload. They execute tar as root to extract files, but do not validate the extraction directory. Creating a tar file with ../../../../ allows replacement of almost any file on a phone. This leads to password replacement and arbitrary code execution as root.Show less
CVE-2019-14656 1Yeahlink 3T49g Firmware T58v FirmwareVp59 Firmware Jun 17, 2026 Oct 8, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Yealink phones through 2019-08-04 do not properly check user roles in POST requests. Consequently, the default User account (with a password of user) can make admin requests via HTTP.
CVE-2019-15751 1Sitos 1Sitos Six Jun 17, 2026 Oct 7, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 An unrestricted file upload vulnerability in SITOS six Build v6.2.1 allows remote attackers to execute arbitrary code by uploading a SCORM file with an executable extension. This allows an unauthenticated attacker to upl...Show more An unrestricted file upload vulnerability in SITOS six Build v6.2.1 allows remote attackers to execute arbitrary code by uploading a SCORM file with an executable extension. This allows an unauthenticated attacker to upload a malicious file (containing PHP code to execute operating system commands) to the web root of the application.Show less
CVE-2019-15748 1Sitos 1Sitos Six Jun 17, 2026 Oct 7, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 SITOS six Build v6.2.1 permits unauthorised users to upload and import a SCORM 2004 package by browsing directly to affected pages. An unauthenticated attacker could use the upload and import functionality to import a ma...Show more SITOS six Build v6.2.1 permits unauthorised users to upload and import a SCORM 2004 package by browsing directly to affected pages. An unauthenticated attacker could use the upload and import functionality to import a malicious SCORM package that includes a PHP file, which could execute arbitrary PHP code.Show less
CVE-2019-17188 1Fecmall 1Fecmall Jun 17, 2026 Oct 4, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 An unrestricted file upload vulnerability was discovered in catalog/productinfo/imageupload in Fecshop FecMall 2.3.4. An attacker can bypass a front-end restriction and upload PHP code to the webserver, by providing imag...Show more An unrestricted file upload vulnerability was discovered in catalog/productinfo/imageupload in Fecshop FecMall 2.3.4. An attacker can bypass a front-end restriction and upload PHP code to the webserver, by providing image data and the image/jpeg content type, with a .php extension. This occurs because the code relies on the getimagesize function.Show less
CVE-2019-11655 1Hp 1Arcsight Logger Jun 17, 2026 Oct 4, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Unrestricted file upload vulnerability in Micro Focus ArcSight Logger, version 6.7.0 and later. This vulnerability could allow Unrestricted Upload of File with Dangerous type.
CVE-2019-15766 1Kslabs 1Ksweb Jun 17, 2026 Oct 3, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 The KSLABS KSWEB (aka ru.kslabs.ksweb) application 3.93 for Android allows authenticated remote code execution via a POST request to the AJAX handler with the configFile parameter set to the arbitrary file to be written...Show more The KSLABS KSWEB (aka ru.kslabs.ksweb) application 3.93 for Android allows authenticated remote code execution via a POST request to the AJAX handler with the configFile parameter set to the arbitrary file to be written to (and the config_text parameter set to the content of the file to be created). This can be a PHP file that is written to in the public web directory and subsequently executed. The attacker must have network connectivity to the PHP server that is running on the Android device.Show less
CVE-2019-17046 1Ilch 1Ilch Cms Jun 17, 2026 Sep 30, 2019 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Ilch 2.1.22 allows remote code execution because php is listed under "Allowed files" on the index.php/admin/media/settings/index page.

Previous 1...182183184...206 Next