CVE-2025-3862 | Contest Gallery Plugin up to 26.0.6 on WordPress ID cross site scripting

Inserito da Angelo Barbosa | Mag 8, 2025 | CVE

A vulnerability was found in Contest Gallery Plugin up to 26.0.6 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation of the argument ID leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-3862. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-3862 | Contest Gallery Plugin up to 26.0.6 on WordPress ID cross site scripting

Post correlati

CVE-2024-35495 | TP-Link Kasa KP125M/Tapo P125M 1.0.0 Telemetry information disclosure

CVE-2024-31371 | Xylus Themes WP Event Aggregator Plugin up to 1.7.6 on WordPress cross-site request forgery

CVE-2024-53202 | Linux Kernel up to 6.6.63/6.11.10/6.12.1 firmware_loader fw_log_firmware_info memory leak

CVE-2024-45265 | SkySystem Arfa-CMS prior 5.1.3124 Poll psid sql injection