Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Security Bypass - CVE-2022-3282 - Vulnerability Database
WP Plugin Drag And Drop Multiple File Upload Contact Form 7

WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Security Bypass - CVE-2022-3282

Medium
Reference: CVE-2022-3282
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-3282
Title: WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Security Bypass
Overview:

WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently bypass size limit restriction when uploading files. WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 version 1.3.6.4 is vulnerable prior versions may also be affected.