cleantalk
Vulnerabilities and Security Researches

Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress, CVE-2025-62950

CVE, Research URL

CVE-2025-62950

Home page URL

Security reports for Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress

Application

Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress

Published on
Nov 06, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery contest-gallery allows Cross Site Request Forgery.This issue affects Contest Gallery: from n/a through <= 28.0.0.
Affected versions
max 28.0.0.
Status
vulnerable
Previous vulnerability researches
Estatik Mortgage Calculator (CVE-2025-48136) , May 18, 2025
Estatik Mortgage Calculator (CVE-2025-26907) , Feb 27, 2025
Estatik Mortgage Calculator (CVE-2023-28490) , Jun 10, 2024
Estatik Mortgage Calculator (CVE-2023-40601) , Jun 10, 2024
Estatik Mortgage Calculator (CVE-2024-9354) , Jan 08, 2025
New vulnerability
Jock On Air Now (CVE-2025-58986) , Nov 10, 2025
Booking Manager (CVE-2025-10124) , Nov 10, 2025
Fade Slider (CVE-2025-49956) , Nov 10, 2025
LearnPress Export Import &#8211; WordPress extension for LearnPress (CVE-2025-49992) , Nov 10, 2025
LearnPress Export Import &#8211; WordPress extension for LearnPress (CVE-2025-60200) , Nov 10, 2025