A vulnerability was found in Envira Gallery Lite Plugin up to 1.8.7.2 on WordPress and classified as critical. Affected by this issue is the function envira_gallery_insert_images. The manipulation leads to missing authorization.

This vulnerability is handled as CVE-2023-6742. The attack may be launched remotely. There is no exploit available.