CVE-2026-25035

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Contest Gallery versions prior to 28.1.2.3

Description A flaw exists in Contest Gallery that allows for authentication bypass. This allows for authentication abuse by utilizing an alternate path or channel.

Recommendations Update Contest Gallery to version 28.1.2.3 or later.

Fix

Authentication Bypass Using an Alternate Path or Channel

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-288

Related Identifiers

CVE-2026-25035

Affected Products

Contest Gallery

CVE-2026-25035

Weakness Enumeration

Related Identifiers

Affected Products

References · 3