Threat Entry Updated 2024-09-25

CVE-2024-3899 - Envira Gallery Plugin

The Gallery Plugin for WordPress WordPress plugin before 1.8.15 does not sanitise and escape some of its image settings, which could allow users with post-writing privilege such as Author to perform Cross-Site Scripting attacks.

PLUGIN Envira Gallery

CVE-2024-3899

MEDIUM CVSS 4.8 2024-09-11

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2023-6742 - Envira Gallery Plugin

The Gallery Plugin for WordPress – Envira Photo Gallery plugin for WordPress is vulnerable to unauthorized modification of data due to an improper capability check on the 'envira_gallery_insert_images' function in all versions up to, and including, 1.8.7.1. This makes it possible for authenticated attackers, with contributor access and above, to modify galleries on other users' posts.

PLUGIN Envira Gallery

CVE-2023-6742

MEDIUM CVSS 4.3 2024-01-11

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2025-05-07

CVE-2022-2190 - Envira Gallery Plugin

The Gallery Plugin for WordPress plugin before 1.8.4.7 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers

PLUGIN Envira Gallery

CVE-2022-2190

MEDIUM CVSS 6.1 2022-10-31

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2021-24126 - Envira Gallery Plugin

Unvalidated input and lack of output encoding in the Envira Gallery Lite WordPress plugin, versions before 1.8.3.3, did not properly sanitise the images metadata (namely title) before outputting them in the generated gallery, which could lead to privilege escalation.

PLUGIN Envira Gallery

CVE-2021-24126

MEDIUM CVSS 5.4 2021-03-18

Risk Score

Open Full Technical Breakdown