cleantalk
Vulnerabilities and Security Researches

Photo Gallery – GT3 Image Gallery & Gutenberg Block Gallery, CVE-2025-69084

CVE, Research URL

CVE-2025-69084

Home page URL

Security reports for Photo Gallery – GT3 Image Gallery & Gutenberg Block Gallery

Application

Photo Gallery – GT3 Image Gallery & Gutenberg Block Gallery

Published on
Jan 06, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GT3 themes Photo Gallery allows Reflected XSS.This issue affects Photo Gallery: from n/a through 2.7.7.26.
Affected versions
max 2.7.7.26.
Status
vulnerable
Previous vulnerability researches
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-24573) , Jan 26, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-1926) , Mar 10, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2024-13427) , May 25, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-4223) , May 25, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-2104) , Mar 14, 2025
New vulnerability
The Events Calendar Countdown Addon (CVE-2025-69348) , Jan 10, 2026
Ultimate Post Kit Addons For Elementor – (Post Grid, Post Carousel, Post Slider, Category List, Post Tabs, Timeline, Post (CVE-2025-14434) , Jan 10, 2026
AH Shortcodes (CVE-2025-14109) , Jan 10, 2026
Sermon Manager (CVE-2025-63002) , Jan 10, 2026
Sermon Manager (CVE-2025-63000) , Jan 10, 2026