top of page
perceptive_background_267k.jpg

Incorrect Privilege Assignment vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery Pro allows Privilege Escalation.

This issue affects…

Published:

31 May 2026 at 22:00:00

Alert date:

1 June 2026 at 16:08:13

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

A privilege escalation vulnerability has been identified in the Contest Gallery Pro WordPress plugin by Wasiliy Strecker. The vulnerability is classified as an Incorrect Privilege Assignment issue that allows attackers to escalate their privileges within the application. This security flaw affects all versions of Contest Gallery Pro from an unspecified starting version through version 29.0.1. The vulnerability has been assigned CVE-2026-42680 and is considered high severity. Users of the affected plugin versions are at risk of unauthorized privilege escalation attacks.

Technical details

Mitigation steps:

Affected products:

Contest Gallery Pro

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-42680
https://patchstack.com/database/wordpress/plugin/contest-gallery-pro/vulnerability/wordpress-contest-gallery-pro-plugin-29-0-1-privilege-escalation-vulnerability?_s_id=cve

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page