CVE-2022-4163

The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery Pro WordPress plugin before 19.1.5.1 do not escape the cg_deactivate and cg_activate POST parameters before concatenating it to an SQL query in 2_deactivate.php and 4_activate.php, respectively. This may allow malicious users with at least author privilege to leak sensitive information from the site's database.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:contest-gallery:contest_gallery:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:contest-gallery:contest_gallery:*:*:*:*:pro:wordpress:*:*

History

21 Nov 2024, 07:34

Type Values Removed Values Added
References () https://bulletin.iese.de/post/contest-gallery_19-1-4-1_10 - Exploit, Third Party Advisory () https://bulletin.iese.de/post/contest-gallery_19-1-4-1_10 - Exploit, Third Party Advisory
References () https://wpscan.com/vulnerability/de0d7db7-f911-4f5f-97f6-885ca60822d1 - Exploit, Third Party Advisory () https://wpscan.com/vulnerability/de0d7db7-f911-4f5f-97f6-885ca60822d1 - Exploit, Third Party Advisory

07 Nov 2023, 03:57

Type Values Removed Values Added
CWE CWE-89
Summary The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery Pro WordPress plugin before 19.1.5.1 do not escape the cg_deactivate and cg_activate POST parameters before concatenating it to an SQL query in 2_deactivate.php and 4_activate.php, respectively. This may allow malicious users with at least author privilege to leak sensitive information from the site's database. The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery Pro WordPress plugin before 19.1.5.1 do not escape the cg_deactivate and cg_activate POST parameters before concatenating it to an SQL query in 2_deactivate.php and 4_activate.php, respectively. This may allow malicious users with at least author privilege to leak sensitive information from the site's database.

Information

Published : 2022-12-26 13:15

Updated : 2024-11-21 07:34


NVD link : CVE-2022-4163

Mitre link : CVE-2022-4163

CVE.ORG link : CVE-2022-4163


JSON object : View

Products Affected

contest-gallery

  • contest_gallery
CWE

No CWE.