Lucene search

CVE-2022-4160

🗓️ 26 Dec 2022 13:13:15Reported by [email protected]Type

The Contest Gallery WordPress plugin and Contest Gallery Pro WordPress plugin before 19.1.5.1 are vulnerable to SQL injection via cg-copy-comments.php and cg-copy-rating.php, potentially allowing sensitive information leakage from the database

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
CVE	CVE-2022-4160	26 Dec 202213:15	–	cve
Prion	Cross site request forgery (csrf)	26 Dec 202213:15	–	prion
wpexploit	Contest Gallery < 19.1.5 - Author+ SQL Injection	5 Dec 202200:00	–	wpexploit
Cvelist	CVE-2022-4160 Contest Gallery < 19.1.5 - Author+ SQL Injection	26 Dec 202212:28	–	cvelist
Vulnrichment	CVE-2022-4160 Contest Gallery < 19.1.5 - Author+ SQL Injection	26 Dec 202212:28	–	vulnrichment
WPVulnDB	Contest Gallery < 19.1.5 - Author+ SQL Injection	5 Dec 202200:00	–	wpvulndb
IBM Security Bulletins	Security Bulletin: IBM Sterling Control Center vulnerable to multiple issues to due IBM Cognos Analystics (CVE-2022-4160, CVE-2021-3733)	23 Nov 202221:31	–	ibm

Nvd

Node

contest-gallery contest_galleryRange<19.1.5.1wordpress

contest-gallery contest_galleryRange<19.1.5.1prowordpress

Source	Link
wpscan	www.wpscan.com/vulnerability/813de343-4814-42b8-b8df-1695320512cd
bulletin	www.bulletin.iese.de/post/contest-gallery_19-1-4-1_14

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Dec 2022 13:15Current

CVSS36.5

EPSS0.00301