Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-616
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-29858 2024-08-05 N/A 9.8 CRITICAL
In MISP before 2.4.187, __uploadLogo in app/Controller/OrganisationsController.php does not properly check for a valid logo upload.
CVE-2024-28520 2024-08-01 N/A 6.5 MEDIUM
File Upload vulnerability in Byzoro Networks Smart multi-service security gateway intelligent management platform version S210, allows an attacker to obtain sensitive information via the uploadfile.php component.
CVE-2024-31601 2024-08-01 N/A 9.8 CRITICAL
An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component.
CVE-2023-38947 1 Wbce 1 Wbce Cms 2024-08-01 N/A 7.2 HIGH
An arbitrary file upload vulnerability in the /languages/install.php component of WBCE CMS v1.6.1 allows attackers to execute arbitrary code via a crafted PHP file.