Known Vulnerabilities for products from Enviragallery
Listed below are 6 of the newest known vulnerabilities associated with the vendor "Enviragallery".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-6742 json | The Gallery Plugin for WordPress – Envira Photo Gallery plugin for WordPress is vulnerable to unauthorized modification of ... | Not Provided | 2024-01-11 | 2026-04-08 |
| CVE-2022-2190 json | The Gallery Plugin for WordPress plugin before 1.8.4.7 does not escape the $_SERVER['REQUEST_URI'] parameter before outputtin... | 6.1 - MEDIUM | 2022-10-31 | 2022-11-01 |
| CVE-2021-24126 json | Unvalidated input and lack of output encoding in the Envira Gallery Lite WordPress plugin, versions before 1.8.3.3, did not p... | 5.4 - MEDIUM | 2021-03-18 | 2021-03-24 |
| CVE-2020-35582 json | A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary J... | 5.4 - MEDIUM | 2021-01-15 | 2021-01-15 |
| CVE-2020-35581 json | A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary J... | 5.4 - MEDIUM | 2021-01-15 | 2021-01-15 |
| CVE-2020-9334 json | A stored XSS vulnerability exists in the Envira Photo Gallery plugin through 1.7.6 for WordPress. Successful exploitation of ... | 5.4 - MEDIUM | 2020-02-25 | 2023-05-23 |
Known software with vulnerabilities from Enviragallery
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Enviragallery | Envira Gallery | 1.0.0 |
| Application | Enviragallery | Photo Gallery | 1.7.0 |