What the vulnerability does
01Description
Unauthenticated Other Vulnerability Type in Contest Gallery <= 28.1.7 versions.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
What the vulnerability does
Unauthenticated Other Vulnerability Type in Contest Gallery <= 28.1.7 versions.
Explanation of Vulnerability in Simple Terms
Contest Gallery version 28.1.7 and earlier contains an integrity vulnerability that allows unauthenticated attackers to modify data over the network without user interaction. The vulnerability stems from insufficient input validation or access controls. Site administrators should update to a version newer than 28.1.7 to remediate the issue.
What an attacker can do
Modify data in the Contest Gallery application without authentication.
Potential impact on your site
Attackers can alter contest data, gallery content, or other application records without permission.
Conditions required to exploit
Network access to the affected application; no authentication or user interaction required.
Key dates
External resources
Related vulnerabilities