Description
In Play Framework 2.6.0 through 2.8.2, data amplification can occur when an application accepts multipart/form-data JSON input.
Remediation
References
Related Vulnerabilities
Drupal Core 8.8.x Remote Code Execution (8.8.0 - 8.8.10)
Ruby on Rails Improper Input Validation Vulnerability (CVE-2008-7248)
WordPress Plugin WP-UserOnline URL HTML Injection (2.62)
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-5341)
WordPress Plugin Plugmatter Pricing Table Cross-Site Scripting (1.0.32)