cleantalk
Vulnerabilities and Security Researches

Giveaways and Contests by RafflePress – Get More Website Traffic, Email Subscribers, and Social Followers, CVE-2025-49997

CVE, Research URL

CVE-2025-49997

Home page URL

Security reports for Giveaways and Contests by RafflePress – Get More Website Traffic, Email Subscribers, and Social Followers

Application

Giveaways and Contests by RafflePress – Get More Website Traffic, Email Subscribers, and Social Followers

Published on
Jun 20, 2025
Research Description
Missing Authorization vulnerability in Syed Balkhi Giveaways and Contests by RafflePress allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Giveaways and Contests by RafflePress: from n/a through 1.12.17.
Affected versions
Min -, max 1.12.17.
Status
vulnerable
Previous vulnerability researches
Ninja Forms Google Sheet Connector (48c876c4c37ae47cdbba572acd132e945788cdbd) , Jun 07, 2024
Ninja Forms Google Sheet Connector (CVE-2023-2333) , Jun 07, 2024
New vulnerability
WP Customer Area (CVE-2025-49982) , Jun 22, 2025
Polls CP (CVE-2025-50025) , Jun 22, 2025
ContentStudio (CVE-2025-49990) , Jun 22, 2025
ANON::form embedded secure form (CVE-2025-52733) , Jun 22, 2025
Oganro Travel Portal Search Widget for HotelBeds APITUDE API (CVE-2025-49966) , Jun 22, 2025