63 matches found
CVE-2022-26605
eZiosuite v2.0.7 contains an authenticated arbitrary file upload via the Avatar upload functionality...
EUVD-2020-13457
Malware in sbrugna...
EUVD-2020-4280
Malware in sbrugna...
EUVD-2022-44173
Malicious code in bioql PyPI...
EUVD-2022-45231
Malicious code in bioql PyPI...
EUVD-2023-47688
Malicious code in bioql PyPI...
EUVD-2022-43990
Malicious code in bioql PyPI...
EUVD-2023-50266
Malicious code in bioql PyPI...
EUVD-2022-32970
Malicious code in bioql PyPI...
WordPress Shopo Theme <= 1.1.4 is vulnerable to Arbitrary File Upload
Software Shopo Type Theme Vulnerable versions = 1.1.4 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2025-31048 Patch priority Medium CVSS severity Medium 9.9 Developer Claim ownership PSID 148bf5acafb9 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...
WordPress BerqWP plugin <= 2.2.42 - Unauthenticated Arbitrary File Upload vulnerability
Unauthenticated Arbitrary File Upload vulnerability discovered by mikemyers in WordPress Plugin BerqWP versions = 2.2.42...
WordPress AiBud WP plugin <= 1.9 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by Ryan Kozak Patchstack Bug Bounty Program in WordPress Plugin AiBud WP versions = 1.9...
WordPress File Manager Plugin For Wordpress plugin <= 7.5 - Arbitrary File Upload Vulnerability
Arbitrary File Upload Vulnerability discovered by 0xd4rk5id3 in WordPress Plugin File Manager Plugin For Wordpress versions = 7.5...
CVE-2025-32510 WordPress Ovatheme Events Manager plugin <= 1.8.4 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in ovatheme Ovatheme Events Manager ova-events-manager allows Using Malicious Files.This issue affects Ovatheme Events Manager: from n/a through = 1.8.4...
WordPress WP VR plugin <= 8.5.26 - Arbitrary File Upload Vulnerability
Arbitrary File Upload Vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WP VR versions = 8.5.26...
CVE-2024-57338
An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file...
CVE-2024-41304
An arbitrary file upload vulnerability in the uploadFileAction function of WonderCMS v3.4.3 allows attackers to execute arbitrary code via a crafted SVG file...
CVE-2024-40555
Tmalldemo v2024.07.03 was discovered to contain an arbitrary file upload vulnerability...
CVE-2024-51366
An arbitrary file upload vulnerability in the component \Roaming\Omega of OmegaT v6.0.1 allows attackers to execute arbitrary code via uploading a crafted .conf file...
CVE-2023-43269
pigcms up to 7.0 was discovered to contain an arbitrary file upload vulnerability...