Responsive Lightbox2, CVE-2022-3987
- CVE, Research URL
- Home page URL
- Application
- Published on
- Dec 19, 2022
- Research Description
- The Responsive Lightbox2 WordPress plugin before 1.0.4 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
- Affected versions
-
Min -, max 1.0.3.
- Status
-
vulnerable
Previous vulnerability researches |
---|
Responsive Lightbox2 (CVE-2022-3987) , Jun 07, 2024 |
Responsive Lightbox2 (3a708e667647cfc7347348989e4ffa77f2b38c04) , Jun 07, 2024 |