CVE-2025-48291 Information

Jul 17, 2025 cve

Description

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery allows Stored XSS. This issue affects Contest Gallery: from n/a through 26.0.6.

Reference

https://patchstack.com/database/wordpress/plugin/contest-gallery/vulnerability/wordpress-contest-gallery-26-0-6-cross-site-scripting-xss-vulnerability?_s_id=cve

CNNVD-202507-2202 (Published: 2025-07-16)

Share on:

CVE-2025-48291 Information

Description

Reference

Related CNNVD