Contest Gallery@* Security Vulnerabilities and Issues — Contest Gallery@* CVE List

Lucene search

Contest-galleryContest Gallery*

4 matches found

CVE•added 2025/02/28 6:15 a.m.•57 views

CVE-2025-1513

The Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal or Stripe, Social Share Buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Name and Comment field when commenting on photo gallery entries in all versions...

7.2CVSS6.3AI score0.00136EPSS

CVE•added 2025/02/03 3:15 p.m.•48 views

CVE-2025-22693

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Contest Gallery Contest Gallery allows SQL Injection. This issue affects Contest Gallery: from n/a through 25.1.0.

7.6CVSS7.9AI score0.00056EPSS

CVE•added 2025/05/08 12:15 p.m.•41 views

CVE-2025-3862

Contest Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 26.0.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and abo...

6.4CVSS5.7AI score0.00051EPSS

CVE•added 2025/01/02 12:15 p.m.•37 views

CVE-2024-56237

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Contest Gallery Contest Gallery allows Stored XSS.This issue affects Contest Gallery: from n/a through 24.0.3.

5.9CVSS5.8AI score0.00031EPSS