Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:59 a.m.7 views

CVE-2024-1487

The Photos and Files Contest Gallery WordPress plugin before 21.3.1 does not sanitize and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks...

5.4CVSS6.1AI score0.00398EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/03/29 12:0 a.m.3 views

WordPress Plugin Photos and Files Contest Gallery 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

7.1CVSS7.4AI score0.00426EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/28 12:0 a.m.4 views

WordPress Plugin Photos and Files Contest Gallery SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

9.9CVSS7.6AI score0.00631EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/27 12:0 a.m.4 views

WordPress Plugin Photos and Files Contest Gallery SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

8.8CVSS7.6AI score0.00631EPSS
Exploits0References2
NVD
NVD
added 2024/03/11 6:15 p.m.12 views

CVE-2024-1487

The Photos and Files Contest Gallery WordPress plugin before 21.3.1 does not sanitize and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks...

5.4CVSS5.8AI score0.00398EPSS
Exploits1References1
OSV
OSV
added 2024/03/11 6:15 p.m.4 views

CVE-2024-1487

The Photos and Files Contest Gallery WordPress plugin before 21.3.1 does not sanitize and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks...

5.4CVSS5.8AI score0.00398EPSS
Exploits1References1
CVE
CVE
added 2024/03/11 5:56 p.m.70 views

CVE-2024-1487

The CVE affects the Photos and Files Contest Gallery WordPress plugin prior to 21.3.1. The issue is improper sanitization/escaping of certain parameters, enabling stored Cross-Site Scripting by users with as low as author privileges. Impact is potential script execution in pages leveraged by the ...

5.4CVSS6AI score0.00398EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/11 12:0 a.m.5 views

PT-2024-18087 · WordPress · Photos/Files Contest Gallery Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: Photos and Files Contest Gallery WordPress plugin versions prior to 21.3.1 Description: The issue concerns a lack of sanitization and escaping of certain parameters, potentially allowing Cross-Site Scripting attacks by users with a role as lo...

5.4CVSS6.4AI score0.00398EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/03/11 12:0 a.m.5 views

WordPress plugin Photos and Files Contest Gallery security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A security vulnerability exists in the WordPress...

5.4CVSS6.7AI score0.00398EPSS
Exploits1References2
OSV
OSV
added 2024/02/12 9:15 a.m.2 views

CVE-2024-24887

Cross-Site Request Forgery CSRF vulnerability in Contest Gallery Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress.This issue affects Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress...

8.8CVSS7.3AI score0.00208EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/02/12 12:0 a.m.5 views

WordPress Plugin Photos and Files Contest Gallery Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

8.8CVSS6.7AI score0.00208EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/10/31 12:0 a.m.3 views

WordPress Plugin Photos and Files Contest Gallery Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blog sites on PHP and MySQL servers.WordPress plugin is an...

6.1CVSS5.9AI score0.00501EPSS
Exploits2References3
Rows per page
Query Builder