CVE-2026-1036 | 10Web Photo Gallery Plugin up to 1.8.36 on WordPress delete_comment authorization

January 21, 2026 Yanac

A vulnerability was found in 10Web Photo Gallery Plugin up to 1.8.36 on WordPress and classified as critical. The affected element is the function delete_comment. The manipulation results in missing authorization.

This vulnerability is known as CVE-2026-1036. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

Dispel rolls out Integrated Threat Monitoring for OT remote access as industrial attack surfaces expand
CVE-2026-1220 | Google Chrome up to 144.0.7559.59 V8 race condition