• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-434

CVE-2022-48194

February 23, 2023 by godfreyd94

TP-Link TL-WR902AC devices through V3 0.9.1 allow remote authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) by uploading a crafted firmware update because the signature check is inadequate.

CVE-2022-48006

February 23, 2023 by godfreyd94

An arbitrary file upload vulnerability in taocms v3.0.2 allows attackers to execute arbitrary code via a crafted PHP file. This vulnerability is exploited via manipulation of the upext variable at /include/Model/Upload.php.

CVE-2022-48008

February 23, 2023 by godfreyd94

An arbitrary file upload vulnerability in the plugin manager of LimeSurvey v5.4.15 allows attackers to execute arbitrary code via a crafted PHP file.

CVE-2022-47766

February 23, 2023 by godfreyd94

PopojiCMS v2.0.1 backend plugin function has a file upload vulnerability.

CVE-2022-47769

February 23, 2023 by godfreyd94

An arbitrary file write vulnerability in Serenissima Informatica Fast Checkin v1.0 allows unauthenticated attackers to upload malicious files in the web root of the application to gain access to the server via the web shell.

CVE-2022-47854

February 23, 2023 by godfreyd94

i-librarian 4.10 is vulnerable to Arbitrary file upload in ajaxsupplement.php.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 152
  • Go to page 153
  • Go to page 154
  • Go to page 155
  • Go to page 156
  • Interim pages omitted …
  • Go to page 224
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE