Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:drag_and_drop_multiple_file_upload_contact_form_7:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductDrag And Drop Multiple File Upload Contact Form 7 (a14861a5-3856-5ea7-9e7d-c35350525b61)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-1112 vulnerable 2026-06-08 05:52:33.907653 Drag and Drop Multiple File Upload Contact Form 7 admin-ajax.php path traversal
MEDIUM (4.7)
A vulnerability was found in Drag and Drop Multiple File Upload Contact Form 7 5.0.6.1 on WordPress. It has been classified as critical. Affected is an unknown function of the file admin-ajax.php. The manipulation of the argument upload_name leads to relative path traversal. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-222072.
Published: 2023-03-01T09:54:38.579Z
Updated: 2025-03-05T19:25:22.912Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.