Team IT Security (TSEC) Nachrichtenportal Logo

🕵️ CVE-2022-4159 | Contest Gallery Plugin/Contest Gallery Pro Plugin 19.1.5 on WordPress POST Parameter 0_change-gallery.php cg_id sql injection


Nachrichtenbereich: 🕵️ Sicherheitslücken
🔗 Quelle: vuldb.com

A vulnerability was found in Contest Gallery Plugin and Contest Gallery Pro Plugin 19.1.5 on WordPress. It has been classified as critical. This affects an unknown part of the file 0_change-gallery.php of the component POST Parameter Handler. The manipulation of the argument cg_id leads to sql injection. This vulnerability is uniquely identified as CVE-2022-4159. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component. ...

Sharing is caring on Social Media

Reddit
Telegram
LinkedIn
Xing
Twitter
Whatsapp
Facebook
Flipboard

🕵️ Car Seller Auto Classifieds Script Plugin up to 2.1.0 on WordPress POST Parameter request_list_request order_id sql injection


📈 29.65 Punkte
🕵️ Sicherheitslücken

🕵️ Modern Events Calendar Lite Plugin up to 5.16.5 on WordPress POST Parameter mec_fes_form mec[post_id] sql injection


📈 29.65 Punkte
🕵️ Sicherheitslücken

🕵️ Good Layers LMS Plugin up to 2.1.4 on WordPress POST Parameter wp_ajax_nopriv id sql injection


📈 29.65 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-12538 | binsaifullah Duplicate Post, Page and Any Custom Post plugin up to 3.5.3 on WordPress Password Protected Post dpp_duplicate_as_draft information disclosure


📈 27.83 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-51837 | SONS Creative Development WP Contest Plugin up to 1.0.0 on WordPress sql injection


📈 26.22 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-4396 | Relevanssi Plugin up to 2.27.4/4.24.4 on WordPress Query Parameter sql injection (EUVD-2025-14360)


📈 23.94 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-0723 | metagauss ProfileGrid Plugin up to 5.9.4.7 on WordPress Parameter Search sql injection


📈 23.94 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-7548 | LearnPress Plugin up to 4.2.6.9.3 on WordPress Parameter sql injection


📈 23.94 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2021-24762 | Perfect Survey Plugin up to 1.5.1 on WordPress GET Parameter get_question question_id sql injection (EDB-50766)


📈 23.94 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2021-24786 | Download Monitor Plugin up to 4.4.4 on WordPress GET Parameter orderby sql injection (EDB-50695)


📈 23.94 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-6497 | Squirrly SEO Plugin up to 12.3.19 on WordPress URL Parameter sql injection


📈 23.94 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-5203 | WP Sessions Time Monitoring Full Automatic Plugin up to 1.0.8 on WordPress Query Parameter sql injection


📈 23.94 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-3155 | Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel Plugin cross site scripting


📈 23.92 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-0881 | Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel Plugin Ajax Action access control


📈 23.92 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-4042 | Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel Plugin Block Attribute cross site scripting


📈 23.92 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-1988 | Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel Plugin cross site scripting


📈 23.92 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2021-24432 | Advanced AJAX Product Filters Plugin prior 1.5.4.7 on WordPress POST Parameter term_id cross site scripting


📈 23.83 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-25352 | PHPGurukul Land Record System 1.0 POST Request Parameter sql injection


📈 23.74 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-6579 | osCommerce 4 POST Parameter shopping-cart estimate[country_id] sql injection (ID 176124)


📈 23.74 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-25462 | PHPGurukul Land Record System 1.0 POST Request Parameter propertytype sql injection


📈 23.74 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-25354 | Record System 1.0 POST Request Parameter sql injection


📈 23.74 Punkte
🕵️ Sicherheitslücken

🕵️ Better Know a Contest - Film Contest Edition!


📈 23.22 Punkte
🕵️ Hacking

🕵️ Video Embed Plugin up to 1.0 on WordPress GET Parameter id sql injection


📈 22.99 Punkte
🕵️ Sicherheitslücken

🕵️ Xpert Solution Server Status by Hostname-IP Plugin 4.6 on WordPress GET Parameter sql injection


📈 22.99 Punkte
🕵️ Sicherheitslücken

🕵️ CentOS Web Panel POST Parameter idsession sql injection


📈 22.78 Punkte
🕵️ Sicherheitslücken

🕵️ Rausoft ID.prove 2.95 Login Page POST Parameter sql injection


📈 22.78 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-13713 | wpexpertsio WPExperts Square for GiveWP Plugin up to 1.3.1 on WordPress post sql injection


📈 21.28 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-6620 | POST SMTP Mailer Plugin up to 2.8.6 on WordPress sql injection


📈 21.28 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-34168 | Alex Raven WP Report Post Plugin up to 2.1.2 on WordPress sql injection


📈 21.28 Punkte
🕵️ Sicherheitslücken

🕵️ duplicate-post Plugin up to 2.5 on WordPress sql injection [CVE-2014-10379]


📈 21.28 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-23878 | Scott Reilly Post-to-Post Links Plugin up to 4.2 on WordPress cross site scripting


📈 21.16 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-47226 | I Thirteen Web Solution Post Sliders & Post Grids Plugin up to 1.0.20 on WordPress cross site scripting


📈 21.16 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-13322 | Ads Pro Plugin Plugin up to 4.88 on WordPress a_id sql injection


📈 20.61 Punkte
🕵️ Sicherheitslücken

🕵️ podlove-podcasting-plugin-for-wordpress Plugin up to 2.3.15 on WordPress insert_id sql injection


📈 20.53 Punkte
🕵️ Sicherheitslücken

🕵️ Post Indexer Plugin up to 3.0.6.1 on WordPress period sql injection


📈 20.32 Punkte
🕵️ Sicherheitslücken