Vulnerabilities and security researches forlibrary-viewer library-viewer

Feb 27, 2026

CVE, Research URL: CVE-2025-15396
Home page URL: Security reports for Library Viewer
Application: Library Viewer
Date: Feb 02, 2026
Research Description: The Library Viewer WordPress plugin before 3.2.0 does not sanitise and escape some parameters before outputting them back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.
Affected versions: max 3.2.0.
Status: vulnerable

Jun 07, 2024

CVE, Research URL: CVE-2023-32102
Home page URL: Security reports for Library Viewer
Application: Library Viewer
Date: Sep 04, 2023
Research Description: Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Pexle Chris Library Viewer plugin <= 2.0.6 versions.
Affected versions: max 2.0.6.1.
Status: vulnerable

CVE, Research URL: CVE-2023-32101
Home page URL: Security reports for Library Viewer
Application: Library Viewer
Date: Dec 29, 2023
Research Description: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Pexle Chris Library Viewer.This issue affects Library Viewer: from n/a through 2.0.6.
Affected versions: max 2.0.6.1.
Status: vulnerable