top of page
perceptive_background_267k.jpg

Incorrect Privilege Assignment vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery Pro allows Privilege Escalation.

This issue affects…

Published:

31 May 2026 at 22:00:00

Alert date:

1 June 2026 at 17:02:55

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

CVE-2026-42680 is an Incorrect Privilege Assignment vulnerability in Contest Gallery Pro WordPress plugin developed by Wasiliy Strecker / ContestGallery. The vulnerability allows privilege escalation attacks. The issue affects Contest Gallery Pro versions from unknown starting point through version 29.0.1. This is a privilege escalation vulnerability that could allow attackers to gain elevated permissions within the WordPress environment. The vulnerability has been assigned a high criticality rating.

Technical details

Mitigation steps:

Affected products:

Contest Gallery Pro

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-42680
https://patchstack.com/database/wordpress/plugin/contest-gallery-pro/vulnerability/wordpress-contest-gallery-pro-plugin-29-0-1-privilege-escalation-vulnerability?_s_id=cve

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page