cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forwp-fancybox wp-fancybox

Direction: ascending
Jun 07, 2024

WP fancybox # 4d71614314388f289c03a6e624232bab15a8ddc3

Application

WP fancybox

Date
Aug 17, 2020
Research Description
WP fancybox [wp-fancybox] < 1.0.3 WordPress WP fancybox plugin <= 1.0.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability Authenticated Stored Cross-Site Scripting (XSS) vulnerability found by Melbin K Mathew in WordPress WP fancybox plugin (versions <= 1.0.1).
Affected versions
Min -, max -.
Status
vulnerable
Jul 07, 2025

WP fancybox # CVE-2025-26591

CVE, Research URL

CVE-2025-26591

Application

WP fancybox

Date
Jul 04, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Noor Alam WP fancybox allows Stored XSS. This issue affects WP fancybox: from n/a through 1.0.4.
Affected versions
Min -, max -.
Status
vulnerable