Описание
The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery Pro WordPress plugin before 19.1.5.1 do not escape the addCountS POST parameter before concatenating it to an SQL query in 4_activate.php. This may allow malicious users with at least author privilege to leak sensitive information from the site's database.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 19.1.5.1 (исключая)Версия до 19.1.5.1 (исключая)
Одно из
cpe:2.3:a:contest-gallery:contest_gallery:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:contest-gallery:contest_gallery:*:*:*:*:pro:wordpress:*:*
EPSS
Процентиль: 72%
0.00741
Низкий
6.5 Medium
CVSS3
Дефекты
Связанные уязвимости
CVSS3: 6.5
github
около 3 лет назад
The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery Pro WordPress plugin before 19.1.5.1 do not escape the addCountS POST parameter before concatenating it to an SQL query in 4_activate.php. This may allow malicious users with at least author privilege to leak sensitive information from the site's database.
EPSS
Процентиль: 72%
0.00741
Низкий
6.5 Medium
CVSS3