- Lana Codes
- Common Vulnerabilities
Drag and Drop Multiple File Upload – Contact Form 7 by CodeDropz <= 1.3.6.5 - Non-Arbitrary File Upload
LANACOMMONVDB ID: 13484e3c-027a-41fc-b20d-30046cdaa5ab
The plugin was affected by a Non-Arbitrary File Upload and Cross-Site Request Forgery (CSRF) vulnerabilities. The two vulnerabilities allow us to upload files to the server, even with a script.
You must be log in to view vulnerability details.
Or register a new account.