• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-434

CVE-2022-2356

February 23, 2023 by

The Frontend File Manager & Sharing WordPress plugin before 1.1.3 does not filter file extensions when letting users upload files on the server, which may lead to malicious code being uploaded.

CVE-2022-23375

February 23, 2023 by

WikiDocs version 0.1.18 has an authenticated remote code execution vulnerability. An attacker can upload a malicious file using the image upload form through index.php.

CVE-2022-23390

February 23, 2023 by

An issue in the getType function of BBS Forum v5.3 and below allows attackers to upload arbitrary files.

CVE-2022-23315

February 23, 2023 by

MCMS v5.2.4 was discovered to contain an arbitrary file upload vulnerability via the component /ms/template/writeFileContent.do.

CVE-2022-23329

February 23, 2023 by

A vulnerability in ${“freemarker.template.utility.Execute”?new() of UJCMS Jspxcms v10.2.0 allows attackers to execute arbitrary commands via uploading malicious files.

CVE-2022-23346

February 23, 2023 by

BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control issues.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 210
  • Go to page 211
  • Go to page 212
  • Go to page 213
  • Go to page 214
  • Interim pages omitted …
  • Go to page 224
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE