cleantalk
Vulnerabilities and Security Researches

WP fancybox, 4d71614314388f289c03a6e624232bab15a8ddc3

CVE, Research URL

4d71614314388f289c03a6e624232bab15a8ddc3

Home page URL

Security reports for WP fancybox

Application

WP fancybox

Published on
Aug 17, 2020
Research Description
WP fancybox [wp-fancybox] < 1.0.3 WordPress WP fancybox plugin <= 1.0.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability Authenticated Stored Cross-Site Scripting (XSS) vulnerability found by Melbin K Mathew in WordPress WP fancybox plugin (versions <= 1.0.1).
Affected versions
Min -, max 1.0.3.
Status
vulnerable
Previous vulnerability researches
WP fancybox (4d71614314388f289c03a6e624232bab15a8ddc3) , Jun 07, 2024
WP fancybox (CVE-2025-26591) , Jul 07, 2025
New vulnerability
Gallery Widget (CVE-2025-28969) , Jul 08, 2025
Contact Us Page &#8211; Contact People (CVE-2025-28967) , Jul 07, 2025
WP fancybox (CVE-2025-26591) , Jul 07, 2025
Click &amp; Pledge Connect Plugin (CVE-2025-28983) , Jul 07, 2025
Posts Slider Shortcode (CVE-2025-30943) , Jul 07, 2025