CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-12800

The drag-and-drop-multiple-file-upload-contact-form-7 plugin before 1.3.3.3 for WordPress allows Unrestricted File Upload and remote code execution by setting supported_type to php% and uploading a .php% file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.926

EPSS Ranking 99.7%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2020-12800

Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.0

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.0
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.1

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.1
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.2

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.2
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.2.1

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.2.1
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.2.2

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.2.2
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.2.3

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.2.3
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.2.4

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.2.4
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.2.5

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.2.5
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.2.5.0

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.2.5.0
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.2.6.0

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.2.6.0
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.3.0

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.3.0
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.3.1

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.3.1
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.3.2

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.3.2
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.3.3

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.3.3
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.3.3.1

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.3.3.1
Codedropz » Drag And Drop Multiple File Upload - Contact Form 7 » Version: 1.3.3.2

cpe:2.3:a:codedropz:drag_and_drop_multiple_file_upload_-_contact_form_7:1.3.3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-12800

Products

Pricing

Contact Us