CVE-2022-3282

The Drag and Drop Multiple File Upload WordPress plugin before 1.3.6.5 does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attackers could control the file length limit and bypass the limit set by admins in the contact form.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://wpscan.com/vulnerability/035dffef-4b4b-4afb-9776-7f6c5e56452c	Exploit Third Party Advisory
https://wpscan.com/vulnerability/035dffef-4b4b-4afb-9776-7f6c5e56452c	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 07:19

Type	Values Removed	Values Added
References	~~() https://wpscan.com/vulnerability/035dffef-4b4b-4afb-9776-7f6c5e56452c - Exploit, Third Party Advisory~~	() https://wpscan.com/vulnerability/035dffef-4b4b-4afb-9776-7f6c5e56452c - Exploit, Third Party Advisory

Information

Published : 2022-10-17 12:15

Updated : 2024-11-21 07:19

NVD link : CVE-2022-3282

Mitre link : CVE-2022-3282

CVE.ORG link : CVE-2022-3282

JSON object : View

Products Affected

codedropz

drag_and_drop_multiple_file_upload_-_contact_form_7

CWE

CWE-639

Authorization Bypass Through User-Controlled Key

{"id": "CVE-2022-3282", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2022-10-17T12:15:10.723", "references": [{"url": "https://wpscan.com/vulnerability/035dffef-4b4b-4afb-9776-7f6c5e56452c", "tags": ["Exploit", "Third Party Advisory"], "source": "contact@wpscan.com"}, {"url": "https://wpscan.com/vulnerability/035dffef-4b4b-4afb-9776-7f6c5e56452c", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "contact@wpscan.com", "description": [{"lang": "en", "value": "CWE-639"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-639"}]}], "descriptions": [{"lang": "en", "value": "The Drag and Drop Multiple File Upload WordPress plugin before 1.3.6.5 does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attackers could control the file length limit and bypass the limit set by admins in the contact form."}, {"lang": "es", "value": "El plugin Drag and Drop Multiple File Upload de WordPress versiones anteriores a 1.3.6.5, no comprueba apropiadamente el l\u00edmite de tama\u00f1o de subida establecido en los formularios, tomando el valor de la entrada del usuario enviada cuando se env\u00eda el formulario. Como resultado, los atacantes pod\u00edan controlar el l\u00edmite de longitud de los archivos y saltarse el l\u00edmite establecido por los administradores en el formulario de contacto"}], "lastModified": "2024-11-21T07:19:12.763", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:*:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "B7C38231-BE01-437E-A62E-631F91F4A595", "versionEndExcluding": "1.3.6.5"}], "operator": "OR"}]}], "sourceIdentifier": "contact@wpscan.com"}