CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

6 matches found

EUVD•added yesterday•4 views

EUVD-2026-36980

Unauthenticated SQL Injection in Contest Gallery = 28.1.6 versions...

9.3CVSS5.7AI score

Exploits0References2

EUVD•added yesterday•3 views

EUVD-2026-36821

Subscriber Cross Site Scripting XSS in Contest Gallery = 28.1.6 versions...

6.5CVSS5.1AI score

Exploits0References1

Positive Technologies•added yesterday•7 views

PT-2026-49447

Subscriber Cross Site Scripting XSS in Contest Gallery = 28.1.6 versions...

6.5CVSS5.1AI score

Exploits0References2

Positive Technologies•added yesterday•8 views

PT-2026-49415

Unauthenticated SQL Injection in Contest Gallery = 28.1.6 versions...

9.3CVSS5.7AI score

Exploits0References2

EUVD•added 2026/05/19 11:18 a.m.•7 views

EUVD-2026-30893

The Contest Gallery plugin for WordPress is vulnerable to SQL Injection via the 'forminput' parameter in versions up to, and including, 28.1.6. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query inside the unauthenticat...

7.5CVSS5.9AI score0.00391EPSS

Exploits0References5

Patchstack•added 2026/04/21 3:10 p.m.•13 views

WordPress Contest Gallery plugin <= 28.1.6 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Contest Gallery versions = 28.1.6...

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by