Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/05/23 2:32 a.m.8 views

CVE-2023-1282

The Drag and Drop Multiple File Upload PRO - Contact Form 7 Standard WordPress plugin before 2.11.1 and Drag and Drop Multiple File Upload PRO - Contact Form 7 with Remote Storage Integrations WordPress plugin before 5.0.6.4 do not sanitise and escape a parameter before outputting it back in the...

6.1CVSS6.2AI score0.00542EPSS
Exploits3References1
circl
circl
added 2023/04/17 4:41 p.m.6 views

CVE-2023-1282

creationtimestamp| type| source ---|---|--- 2023-04-17 16:41:52+00:00| seen| https://t.me/cibsecurity/62279...

6.1CVSS6AI score0.00542EPSS
Exploits3References1
nvd
nvd
added 2023/04/17 1:15 p.m.27 views

CVE-2023-1282

The Drag and Drop Multiple File Upload PRO - Contact Form 7 Standard WordPress plugin before 2.11.1 and Drag and Drop Multiple File Upload PRO - Contact Form 7 with Remote Storage Integrations WordPress plugin before 5.0.6.4 do not sanitise and escape a parameter before outputting it back in the...

6.1CVSS6.2AI score0.00542EPSS
Exploits3References2
vulnrichment
vulnrichment
added 2023/04/17 12:17 p.m.6 views

CVE-2023-1282 Drag and Drop Multiple File Upload PRO - Reflected Cross-Site Scripting

The Drag and Drop Multiple File Upload PRO - Contact Form 7 Standard WordPress plugin before 2.11.1 and Drag and Drop Multiple File Upload PRO - Contact Form 7 with Remote Storage Integrations WordPress plugin before 5.0.6.4 do not sanitise and escape a parameter before outputting it back in the...

6.2AI score0.00542EPSS
Exploits3References2
cve
cve
added 2023/04/17 12:17 p.m.72 views

CVE-2023-1282

The CVE-2023-1282 entry affects the WordPress plugins “Drag and Drop Multiple File Upload PRO – Contact Form 7 Standard” (before 2.11.1) and “Drag and Drop Multiple File Upload PRO – Contact Form 7 with Remote Storage Integrations” (before 5.0.6.4). Root cause: both plugins do not sanitize/escape...

6.1CVSS6.1AI score0.00542EPSS
Exploits3References2Affected Software1
patchstack
patchstack
added 2023/04/13 12:0 a.m.16 views

WordPress Drag and Drop Multiple File Upload PRO Plugin < 5.0.6.4 is vulnerable to Cross Site Scripting (XSS)

Software Drag and Drop Multiple File Upload PRO Type Plugin Vulnerable versions 5.0.6.4 Fixed in 5.0.6.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1282 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 21c6dea8a7cd Credi...

6.1CVSS5.7AI score0.00542EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder