cleantalk
Vulnerabilities and Security Researches

Envo Extra, CVE-2026-32386

CVE, Research URL

CVE-2026-32386

Home page URL

Security reports for Envo Extra

Application

Envo Extra

Published on
Mar 14, 2026
Research Description
Missing Authorization vulnerability in EnvoThemes Envo Extra envo-extra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Envo Extra: from n/a through <= 1.9.13.
Affected versions
max 1.9.13.
Status
vulnerable
Previous vulnerability researches
Booking Calendar &#8211; Clockwork SMS (CVE-2017-17780) , Jun 07, 2024
Booking Calendar &#8211; Clockwork SMS (CVE-2017-18555) , Jun 07, 2024
New vulnerability
PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes (CVE-2026-32539) , Mar 30, 2026
Kargo Takip (CVE-2026-25365) , Mar 30, 2026
Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library ) (CVE-2026-32429) , Mar 30, 2026
Pochipp (CVE-2026-32417) , Mar 30, 2026
Contact Manager (CVE-2026-32517) , Mar 30, 2026