cleantalk
Vulnerabilities and Security Researches

Gallery Plugin for WordPress – Envira Photo Gallery, 7f138c4e96629fee015301c9c3ca12814b93d805

CVE, Research URL

7f138c4e96629fee015301c9c3ca12814b93d805

Home page URL

Security reports for Gallery Plugin for WordPress – Envira Photo Gallery

Application

Gallery Plugin for WordPress – Envira Photo Gallery

Published on
Dec 19, 2020
Research Description
Envira Gallery &#8211; Image Photo Gallery, Albums, Video Gallery, Slideshows &amp; More [envira-gallery-lite] < 1.8.3.3 WordPress Envira Photo Gallery plugin <= 1.8.3.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability Authenticated Stored Cross-Site Scripting (XSS) vulnerability found by Minh Tuan (SunCSR) in WordPress Envira Photo Gallery plugin (versions <= 1.8.3.2).
Affected versions
max 1.8.3.3.
Status
vulnerable
Previous vulnerability researches
Gallery Plugin for WordPress &#8211; Envira Photo Gallery (CVE-2025-12377) , Dec 10, 2025
Gallery Plugin for WordPress &#8211; Envira Photo Gallery (CVE-2025-11448) , Dec 10, 2025
Gallery Plugin for WordPress &#8211; Envira Photo Gallery (CVE-2024-37095) , Jun 24, 2024
Gallery Plugin for WordPress &#8211; Envira Photo Gallery (CVE-2024-43925) , Aug 29, 2024
Gallery Plugin for WordPress &#8211; Envira Photo Gallery (CVE-2026-54190) , Jun 18, 2026
New vulnerability
Advanced 301 and 302 Redirect (CVE-2026-49067) , Jun 18, 2026
Abandoned Contact Form 7 (CVE-2026-9187) , Jun 18, 2026
ABC Crypto Checkout (CVE-2026-52695) , Jun 18, 2026
WordPress File Sharing Plugin (CVE-2026-10093) , Jun 18, 2026
Gallery Plugin for WordPress &#8211; Envira Photo Gallery (CVE-2026-54190) , Jun 18, 2026