Contest Gallery Luki w zabezpieczeniach

Oś czasu

Wersja

21.3.0	3
21.3.1	3
21.3.2	3
21.3.3	2
21.3.4	2

Przeciwdziałanie

Official Fix	21
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	7

Wykorzystywanie

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	28

Wektor dostępu

Not Defined	0
Physical	0
Local	0
Adjacent	0
Network	28

Uwierzytelnianie

Not Defined	0
High	3
Low	19
None	6

Interakcja z użytkownikiem

Not Defined	0
Required	6
None	22

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	2
≤5	4
≤6	11
≤7	7
≤8	3
≤9	1
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	2
≤5	4
≤6	12
≤7	6
≤8	3
≤9	1
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	3
≤5	14
≤6	2
≤7	8
≤8	1
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	3
≤6	0
≤7	12
≤8	2
≤9	2
≤10	1

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	0
≤7	1
≤8	2
≤9	2
≤10	0

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	1
<2k	26
<5k	1
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Wykorzystaj dzisiaj

<1k	26
<2k	2
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (36): 10.4, 10.4.1, 10.4.2, 10.4.3, 10.4.4, 13.1, 13.1.0.1, 13.1.0.2, 13.1.0.3, 13.1.0.4, 13.1.0.5, 13.1.0.6, 13.1.0.7, 13.1.0.8, 13.1.0.9, 17, 17.0.1, 17.0.2, 17.0.3, 17.0.4, 19.1, 19.1.1, 19.1.2, 19.1.3, 19.1.4, 21.0, 21.1, 21.1.1, 21.1.2, 21.2, 21.3, 21.3.1, 21.3.2, 21.3.3, 21.3.4, 21.3.5

Typ oprogramowania: Photo Gallery Software

Opublikowano	Base	Temp	Słaby punkt	0day	Dzisiaj	Wyk	Prz	CTI	CVE
2024-03-29	5.7	5.6	Contest Gallery Plugin cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2024-30428
2024-03-28	7.4	7.3	Contest Gallery Plugin sql injection	$0-$5k	$0-$5k	Not Defined	Not Defined	0.03	CVE-2024-30236
2024-03-27	7.4	7.3	Contest Gallery Plugin sql injection	$0-$5k	$0-$5k	Not Defined	Not Defined	0.06	CVE-2024-30238
2024-03-11	3.5	3.4	Photos and Files Contest Gallery Plugin cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-1487
2023-10-31	5.2	5.1	Photos and Files Contest Gallery Plugin cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-5307
2023-03-30	3.5	3.4	Contest Gallery Plugin cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-28784
2022-12-26	5.4	5.3	Contest Gallery Plugin/Contest Gallery Pro Plugin POST Parameter 4_activate.php sql injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-4166
2022-12-26	5.4	5.3	Contest Gallery Plugin/Contest Gallery Pro Plugin POST Parameter order-custom-fields-with-and-without-search.php sql injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-4165
2022-12-26	5.4	5.3	Contest Gallery Plugin/Contest Gallery Pro Plugin POST Parameter 0_change-gallery.php sql injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-4164
2022-12-26	5.4	5.3	Contest Gallery Plugin/Contest Gallery Pro Plugin POST Parameter sql injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-4163

18 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 18 results.

◂ PoprzedniPrzeglądKolejny ▸

Might our Artificial Intelligence support you?

Check our Alexa App!