CVE-2024-30428
WordPress Contest Gallery plugin <= 24.0.3 - Reflected Cross Site Scripting (XSS) vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery contest-gallery allows Reflected XSS.This issue affects Contest Gallery: from n/a through <= 24.0.3.
| CWE | CWE-79 |
| Vendor | wasiliy strecker / contestgallery developer |
| Product | contest gallery |
| Published | Mar 29, 2024 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for wasiliy strecker / contestgallery developer contest gallery
Be the first to know when new unknown vulnerabilities affecting wasiliy strecker / contestgallery developer contest gallery are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Wasiliy Strecker / ContestGallery developer / Contest Gallery
0 โค 24.0.3
References
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/contest-gallery/vulnerability/wordpress-contest-gallery-plugin-21-3-5-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve patchstack.com: https://patchstack.com/database/vulnerability/contest-gallery/wordpress-contest-gallery-plugin-21-3-5-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
Credits
Dimas Maulana | Patchstack Bug Bounty Program