23systems : Security Vulnerabilities, CVEs, (XSS)
The Lightbox Plus Colorbox plugin through 2.7.2 for WordPress has cross-site request forgery (CSRF) via wp-admin/admin.php?page=lightboxplus, as demonstrated by resultant width XSS.
Max CVSS
6.1
EPSS Score
0.07%
Published
2019-08-09
Updated
2019-08-15
1 vulnerabilities found