VYPR

Photos and Files Contest Gallery

by WordPress

CVEs (3)

  • CVE-2023-5307MedOct 31, 2023
    risk 0.40cvss 6.1epss 0.01

    The Photos and Files Contest Gallery WordPress plugin before 21.2.8.1 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks via certain headers.

  • CVE-2024-1487MedMar 11, 2024
    risk 0.35cvss 5.4epss 0.00

    The Photos and Files Contest Gallery WordPress plugin before 21.3.1 does not sanitize and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks.

  • CVE-2024-24887MedFeb 12, 2024
    risk 0.35cvss 5.4epss 0.00

    Cross-Site Request Forgery (CSRF) vulnerability in Contest Gallery Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress.This issue affects Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and…