cleantalk
Vulnerabilities and Security Researches

Pixabay Images, CVE-2015-1366

CVE, Research URL

CVE-2015-1366

Home page URL

Security reports for Pixabay Images

Application

Pixabay Images

Published on
Jan 28, 2015
Research Description
Cross-site scripting (XSS) vulnerability in pixabay-images.php in the Pixabay Images plugin before 2.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the image_user parameter.
Affected versions
Min -, max 2.4.
Status
vulnerable
Previous vulnerability researches
Pixabay Images (CVE-2025-4413) , Jun 20, 2025
Pixabay Images (CVE-2015-1376) , Jun 07, 2024
Pixabay Images (CVE-2015-1375) , Jun 07, 2024
Pixabay Images (CVE-2015-1365) , Jun 07, 2024
Pixabay Images (CVE-2015-1366) , Jun 07, 2024
New vulnerability
My Reservation System (CVE-2025-7022) , Aug 02, 2025
Connector for Gravity Forms and Google Sheets (CVE-2025-54682) , Aug 02, 2025
Content Egg (CVE-2025-47536) , Aug 02, 2025
Smart Slider 3 (CVE-2025-6348) , Aug 02, 2025
Realtyna Organic IDX plugin + WPL Real Estate (CVE-2025-54052) , Aug 02, 2025