Contest Gallery Security Vulnerabilities and Issues — Contest Gallery CVE List

Lucene search

Contest-galleryContest Gallery

4 matches found

CVE•added 2024/03/28 5:15 a.m.•62 views

CVE-2024-30236

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Contest Gallery.This issue affects Contest Gallery: from n/a through 21.3.4.

9.9CVSS8.9AI score0.00367EPSS

CVE•added 2024/03/11 6:15 p.m.•60 views

CVE-2024-1487

The Photos and Files Contest Gallery WordPress plugin before 21.3.1 does not sanitize and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks.

5.4CVSS6AI score0.00272EPSS

CVE•added 2024/03/29 2:15 p.m.•56 views

CVE-2024-30428

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Contest Gallery allows Reflected XSS.This issue affects Contest Gallery: from n/a through 21.3.5.

7.1CVSS7.1AI score0.00144EPSS

CVE•added 2024/03/27 2:15 p.m.•54 views

CVE-2024-30238

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Contest Gallery.This issue affects Contest Gallery: from n/a through 21.3.2.

8.8CVSS8.9AI score0.00367EPSS