Update the WordPress Contest Gallery plugin to the latest available version (at least 22.214.171.124).
WPScanTeam discovered and reported this Sensitive Data Exposure vulnerability in WordPress Contest Gallery Plugin. This vulnerability has been fixed in version 126.96.36.199.
Unauth. Stored CrossSite Scripting (XSS) vulnerability
Authenticated SQL Injection (SQLi) vulnerability
Authenticated Stored CrossSite Scripting (XSS) vulnerability
Missing Access Controls to Unauthenticated SQL injection (SQLi) / Email Address Disclosure vulnerability
CrossSite Request Forgery (CSRF) vulnerability