Wp Lightbox 2

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-3745 MEDIUM POC PATCH This Month

The WP Lightbox 2 WordPress plugin before 3.0.6.8 does not correctly sanitize the value of the title attribute of links before using them, which may allow malicious users to conduct XSS attacks.

WordPress XSS Wp Lightbox 2 PHP
NVD WPScan
CVSS 3.1
6.3
EPSS
0.0%
CVE-2025-3745
EPSS 0% CVSS 6.3
MEDIUM POC PATCH This Month

The WP Lightbox 2 WordPress plugin before 3.0.6.8 does not correctly sanitize the value of the title attribute of links before using them, which may allow malicious users to conduct XSS attacks.

WordPress XSS Wp Lightbox 2 +1
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy