Update the WordPress Contest Gallery plugin to the latest available version (at least 13.1.0.6).
Tyler Miller discovered and reported this Broken Access Control vulnerability in WordPress Contest Gallery Plugin. This vulnerability has been fixed in version 13.1.0.6.
Unauth. Stored CrossSite Scripting (XSS) vulnerability
23.11.2022
Authenticated SQL Injection (SQLi) vulnerability
09.08.2022
Authenticated Stored CrossSite Scripting (XSS) vulnerability
20.12.2021
Email Address Disclosure vulnerability
01.11.2021
CrossSite Request Forgery (CSRF) vulnerability
10.07.2019