Run Contests, Raffles, and Giveaways with ContestsWP

Vulnerabilities 8Slug contest-code-checkerLatest version 2.1.1WordPress.org →

Minimum safe version

2.1.1

Update to 2.1.1 or later to address 7 fixable vulnerabilities

Latest available2.1.1 ✓⚠ 1 vulnerability has no fix

Medium 5.3

2026-02-03< 2.1.1

CVE-2026-25023

CVE Wordfence

High 7.1 Unfixed

2025-04-17≤ 2.1.1

WordPress Run Contests, Raffles, and Giveaways plugin <= 2.1.1 - Reflected Cross Site Scripting (XSS) vulnerability

CVE EUVD Patchstack Wordfence

Medium 6.1

2024-11-21< 2.0.4

CVE-2024-11456

CVE Patchstack Wordfence

Medium 6.3

2024-10-16< 1.9.0

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE

N/A

2023-07-18< 1.9.8

WordPress Run Contests, Raffles, and Giveaways with ContestsWP Plugin < 1.9.8 is vulnerable to Cross Site Scripting (XSS)

Patchstack WPScan CVE

N/A

2022-03-04< 1.9.0

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence

N/A

2022-02-28< 1.9.0

WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin <= 1.7.8 - Sensitive Information Disclosure vulnerability

Patchstack

N/A

2022-02-28< 1.9.0

WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin <= 1.7.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack