Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

CVEs (4,107)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-11445 1Openkm 1Openkm Jun 17, 2026 Apr 22, 2019 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 OpenKM 6.3.2 through 6.3.7 allows an attacker to upload a malicious JSP file into the /okm:root directories and move that file to the home directory of the site, via frontend/FileUpload and admin/repository_export.jsp. T...Show more OpenKM 6.3.2 through 6.3.7 allows an attacker to upload a malicious JSP file into the /okm:root directories and move that file to the home directory of the site, via frontend/FileUpload and admin/repository_export.jsp. This is achieved by interfering with the Filesystem path control in the admin's Export field. As a result, attackers can gain remote code execution through the application server with root privileges.Show less
CVE-2019-11401 1Siteserver 1Siteserver Cms Jun 17, 2026 Apr 22, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 A issue was discovered in SiteServer CMS 6.9.0. It allows remote attackers to execute arbitrary code because an administrator can add the permitted file extension .aassp, which is converted to .asp because the "as" subst...Show more A issue was discovered in SiteServer CMS 6.9.0. It allows remote attackers to execute arbitrary code because an administrator can add the permitted file extension .aassp, which is converted to .asp because the "as" substring is deleted.Show less
CVE-2019-11377 1Wcms 1Wcms Jun 17, 2026 Apr 20, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 wcms/wex/finder/action.php in WCMS v0.3.2 has a Arbitrary File Upload Vulnerability via developer/finder because .php is a valid extension according to the fm_get_text_exts function.
CVE-2019-11344 1Pluck Cms 1Pluck Jun 17, 2026 Apr 19, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 data/inc/files.php in Pluck 4.7.8 allows remote attackers to execute arbitrary code by uploading a .htaccess file that specifies SetHandler x-httpd-php for a .txt file, because only certain PHP-related filename extension...Show more data/inc/files.php in Pluck 4.7.8 allows remote attackers to execute arbitrary code by uploading a .htaccess file that specifies SetHandler x-httpd-php for a .txt file, because only certain PHP-related filename extensions are blocked.Show less
CVE-2019-11223 1Supportcandy 1Supportcandy Jun 17, 2026 Apr 18, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An Unrestricted File Upload Vulnerability in the SupportCandy plugin through 2.0.0 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension.
CVE-2018-19453 1Kentico 1Xperience Dec 19, 2025 Apr 10, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Kentico CMS before 11.0.45 allows unrestricted upload of a file with a dangerous type.
CVE-2019-4013 1Ibm 1Bigfix Platform Jun 17, 2026 Apr 10, 2019 N/A· v4 9.9 CRITICAL· v3 9.0 HIGH· v2 IBM BigFix Platform 9.5 could allow any authenticated user to upload any file to any location on the server with root privileges. This results in code execution on underlying system with root privileges. IBM X-Force ID:...Show more IBM BigFix Platform 9.5 could allow any authenticated user to upload any file to any location on the server with root privileges. This results in code execution on underlying system with root privileges. IBM X-Force ID: 155887.Show less
CVE-2019-3940 1Advantech 1Webaccess Jun 17, 2026 Apr 9, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Advantech WebAccess 8.3.4 is vulnerable to file upload attacks via unauthenticated RPC call. An unauthenticated, remote attacker can use this vulnerability to execute arbitrary code.
CVE-2019-11028 1Gatship 1Web Module Jun 17, 2026 Apr 9, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 GAT-Ship Web Module before 1.40 suffers from a vulnerability allowing authenticated attackers to upload any file type to the server via the "Documents" area. This vulnerability is related to "uploadDocFile.aspx".
CVE-2019-10478 1Glory Global 1Rbw 100 Firmware Jun 17, 2026 Apr 5, 2019 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 An issue was discovered on Glory RBW-100 devices with firmware ISP-K05-02 7.0.0. An unrestricted file upload vulnerability in the Front Circle Controller glytoolcgi/settingfile_upload.cgi allows attackers to upload suppl...Show more An issue was discovered on Glory RBW-100 devices with firmware ISP-K05-02 7.0.0. An unrestricted file upload vulnerability in the Front Circle Controller glytoolcgi/settingfile_upload.cgi allows attackers to upload supplied data. This can be used to place attacker controlled code on the filesystem that can be executed and can lead to a reverse root shell.Show less
CVE-2019-3489 1Microfocus 1Content Manager Jun 17, 2026 Apr 1, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An unauthenticated file upload vulnerability has been identified in the Web Client component of Micro Focus Content Manager 9.1, 9.2, and 9.3 when configured to use the ADFS authentication method. The vulnerability could...Show more An unauthenticated file upload vulnerability has been identified in the Web Client component of Micro Focus Content Manager 9.1, 9.2, and 9.3 when configured to use the ADFS authentication method. The vulnerability could be exploited by an unauthenticated remote attacker to upload content to arbitrary locations on the Content Manager server.Show less
CVE-2019-10652 1Flatcore 1Flatcore Jun 17, 2026 Mar 30, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 An issue was discovered in flatCore 1.4.7. acp/acp.php allows remote authenticated administrators to upload arbitrary .php files, related to the addons feature.
CVE-2019-10647 1Zzzcms 1Zzzphp Jun 17, 2026 Mar 30, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 ZZZCMS zzzphp v1.6.3 allows remote attackers to execute arbitrary PHP code via a .php URL in the plugins/ueditor/php/controller.php?action=catchimage source[] parameter because of a lack of inc/zzz_file.php restrictions....Show more ZZZCMS zzzphp v1.6.3 allows remote attackers to execute arbitrary PHP code via a .php URL in the plugins/ueditor/php/controller.php?action=catchimage source[] parameter because of a lack of inc/zzz_file.php restrictions. For example, source%5B%5D=http%3A%2F%2F192.168.0.1%2Ftest.php can be used if the 192.168.0.1 web server sends the contents of a .php file (i.e., it does not interpret a .php file).Show less
CVE-2019-10276 1Cobub 1Razor Jun 17, 2026 Mar 29, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Western Bridge Cobub Razor 0.8.0 has a file upload vulnerability via the web/assets/swf/uploadify.php URI, as demonstrated by a .php file with the image/jpeg content type.
CVE-2019-10012 2Jenzabar Tiny 2Internet Campus Solution Moxiemanager Jun 17, 2026 Mar 25, 2019 N/A· v4 7.5 HIGH· v3 6.0 MEDIUM· v2 Jenzabar JICS (aka Internet Campus Solution) before 9 allows remote attackers to upload and execute arbitrary .aspx code by placing it in a ZIP archive and using the MoxieManager (for .NET) plugin before 2.1.4 in the mox...Show more Jenzabar JICS (aka Internet Campus Solution) before 9 allows remote attackers to upload and execute arbitrary .aspx code by placing it in a ZIP archive and using the MoxieManager (for .NET) plugin before 2.1.4 in the moxiemanager directory within the installation folder ICS\ICS.NET\ICSFileServer.Show less
CVE-2019-3495 1Indionetworks 1Unibox Firmware Jun 17, 2026 Mar 21, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An issue was discovered on Wifi-soft UniBox controller 0.x through 2.x devices. network/mesh/edit-nds.php is vulnerable to arbitrary file upload, allowing an attacker to upload .php files and execute code on the server w...Show more An issue was discovered on Wifi-soft UniBox controller 0.x through 2.x devices. network/mesh/edit-nds.php is vulnerable to arbitrary file upload, allowing an attacker to upload .php files and execute code on the server with root user privileges. Authentication for accessing this component can be bypassed by using Hard coded credentials.Show less
CVE-2018-20526 1Roxyfileman 1Roxy Fileman Nov 21, 2024 Mar 21, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Roxy Fileman 1.4.5 allows unrestricted file upload in upload.php.
CVE-2018-19514 1Ens 1Webgalamb Nov 21, 2024 Mar 21, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In Webgalamb through 7.0, an arbitrary code execution vulnerability could be exploited remotely without authentication. Exploitation requires authentication bypass to access administrative functions of the site to upload...Show more In Webgalamb through 7.0, an arbitrary code execution vulnerability could be exploited remotely without authentication. Exploitation requires authentication bypass to access administrative functions of the site to upload a crafted CSV file with a malicious payload that becomes part of a PHP eval() expression in the subscriber.php file.Show less
CVE-2019-9825 1Feifeicms 1Feifeicms Jun 17, 2026 Mar 14, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 FeiFeiCMS 4.1.190209 allows remote attackers to upload and execute arbitrary PHP code by visiting index.php?s=Admin-Index to modify the set of allowable file extensions, as demonstrated by adding php to the default jpg,g...Show more FeiFeiCMS 4.1.190209 allows remote attackers to upload and execute arbitrary PHP code by visiting index.php?s=Admin-Index to modify the set of allowable file extensions, as demonstrated by adding php to the default jpg,gif,png,jpeg setting, and then using the "add article" feature.Show less
CVE-2019-9692 1Cmsmadesimple 1Cms Made Simple Jun 17, 2026 Mar 11, 2019 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 class.showtime2_image.php in CMS Made Simple (CMSMS) before 2.2.10 does not ensure that a watermark file has a standard image file extension (GIF, JPG, JPEG, or PNG).

Previous 1...188189190...206 Next