Authorization Bypass in Contest Gallery Plugin for WordPress
CVE-2025-12849

5.3MEDIUM

Key Information:

Vendor: WordPress
Status: Contest Gallery – Upload, Vote & Sell With Paypal And Stripe
Vendor: CVE Published:; 15 November 2025

What is CVE-2025-12849?

The Contest Gallery plugin for WordPress is exposed to an authorization bypass due to a flawed AJAX action registration. Specifically, the plugin's cg_check_wp_admin_upload_v10 action is available to both authenticated and unauthenticated users without requisite capability checks or nonce verification. As a result, this could enable unauthenticated attackers to inject arbitrary media attachments into galleries and manipulate gallery metadata through the AJAX action. However, this vulnerability does not allow for file movement or direct uploads.

Affected Version(s)

Contest Gallery – Upload, Vote & Sell with PayPal and Stripe * <= 28.0.2

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/contest-galler...

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 15, 2025
Vulnerability Reserved
Nov 6, 2025

Credit

M Indra Purnama

JSON