Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:12 p.m.6 views

CVE-2022-3282

The Drag and Drop Multiple File Upload WordPress plugin before 1.3.6.5 does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attackers could control the file length limit and bypass the limit set by admins in t...

4.3CVSS6.8AI score0.00543EPSS
Exploits2References1
OSV
OSV
added 2022/10/17 12:15 p.m.3 views

CVE-2022-3282

The Drag and Drop Multiple File Upload WordPress plugin before 1.3.6.5 does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attackers could control the file length limit and bypass the limit set by admins in t...

4.3CVSS5.8AI score0.00543EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/10/17 12:0 a.m.24 views

CVE-2022-3282 Drag and Drop Multiple File Upload < 1.3.6.5 - File Upload Size Limit Bypass

The Drag and Drop Multiple File Upload WordPress plugin before 1.3.6.5 does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attackers could control the file length limit and bypass the limit set by admins in t...

5.1AI score0.00543EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2022/10/17 12:0 a.m.7 views

CVE-2022-3282 Drag and Drop Multiple File Upload < 1.3.6.5 - File Upload Size Limit Bypass

The Drag and Drop Multiple File Upload WordPress plugin before 1.3.6.5 does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attackers could control the file length limit and bypass the limit set by admins in t...

7.2AI score0.00543EPSS
Exploits2References1
CVE
CVE
added 2022/10/17 12:0 a.m.73 views

CVE-2022-3282

The CVE-2022-3282 issue affects the WordPress Drag and Drop Multiple File Upload plugin (versions prior to 1.3.6.5). The underlying flaw is a failure to validate the upload size limit, as the plugin reads the limit from user input at submission time, allowing attackers to bypass the admin-imposed...

4.3CVSS4.7AI score0.00543EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder