Lucene search
PRIOn knowledge basePRION:CVE-2022-3282HistoryOct 17, 2022 - 12:15 p.m.
Design/Logic Flaw
2022-10-1712:15:00
PRIOn knowledge base
www.prio-n.com
6
wordpress plugin
design flaw
logic flaw
file upload
bypass limit
contact form security
The Drag and Drop Multiple File Upload WordPress plugin before 1.3.6.5 does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attackers could control the file length limit and bypass the limit set by admins in the contact form.
| CPE | Name | Operator | Version |
|---|---|---|---|
| drag_and_drop_multiple_file_upload_-_contact_form_7 | lt | 1.3.6.5 |
Related
nvd
nvd
CVE-2022-3282
2022-10-17 12:15:10
cve
cve
CVE-2022-3282
2022-10-17 12:15:10
wpexploit
wpexploit
Drag and Drop Multiple File Upload < 1.3.6.5 - File Upload Size Limit Bypass
2022-09-26 00:00:00
wpvulndb
wpvulndb
Drag and Drop Multiple File Upload < 1.3.6.5 - File Upload Size Limit Bypass
2022-09-26 00:00:00
cvelist
cvelist
patchstack
patchstack