Scratch & Win – Giveaways and Contests. Boost subscribers, traffic, repeat visits, referrals, sales and more — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Scratch & Win – Giveaways and Contests. Boost subscribers, traffic, repeat visits, referrals, sales and more, with AI-generated Chinese analysis, references, and POCs.

Vendor: akashmalik

CVE ID	Title	CVSS	Severity	Published
CVE-2024-13316	Scratch & Win – Giveaways and Contests <= 2.8.0 - Missing Authorization to Unauthenticated Coupon Creation CWE-862	5.3	Medium	2025-02-18
CVE-2024-12545	Scratch & Win – Giveaways and Contests <= 2.7.1 - Cross-Site Request Forgery via reset_installation Function CWE-352	5.4	Medium	2025-01-04
CVE-2024-11898	Scratch & Win – Giveaways and Contests <= 2.6.9 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79	6.4	Medium	2024-12-03

All 3 known CVE vulnerabilities affecting Scratch & Win – Giveaways and Contests. Boost subscribers, traffic, repeat visits, referrals, sales and more with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

Scratch & Win – Giveaways and Contests. Boost subscribers, traffic, repeat visits, referrals, sales and more — Vulnerabilities & Security Advisories 3