cleantalk
Vulnerabilities and Security Researches

Gallery Plugin for WordPress – Envira Photo Gallery, CVE-2026-1236

CVE, Research URL

CVE-2026-1236

Home page URL

Security reports for Gallery Plugin for WordPress – Envira Photo Gallery

Application

Gallery Plugin for WordPress – Envira Photo Gallery

Published on
Mar 04, 2026
Research Description
The Envira Gallery for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'justified_gallery_theme' parameter in all versions up to, and including, 1.12.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions
max 1.12.4.
Status
vulnerable
Previous vulnerability researches
Enable Media Replace (CVE-2026-2732) , Apr 14, 2026
Enable Media Replace (CVE-2023-0255) , Jun 06, 2024
Enable Media Replace (CVE-2023-6737) , Jun 06, 2024
Enable Media Replace (998cd782c633045e5da1cdac6b7b7cd2ce8eb0d2) , Jun 06, 2024
Enable Media Replace (CVE-2022-2554) , Jun 06, 2024
New vulnerability
PixelYourSite – Your smart PIXEL (TAG) Manager (CVE-2026-1841) , Apr 15, 2026
Consensus Embed (CVE-2026-1823) , Apr 15, 2026
Media Library Folders (CVE-2026-2312) , Apr 15, 2026
Nexter Extension (CVE-2026-0726) , Apr 15, 2026
CallbackKiller service widget (CVE-2026-1944) , Apr 15, 2026