Lucene search
K

703 matches found

EUVD
EUVD
added 2025/10/29 9:27 a.m.4 views

EUVD-2015-9406

The Thumbnail Slider With Lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possibl...

4.9CVSS6.1AI score0.0027EPSS
Exploits0References3
CVE
CVE
added 2025/10/29 9:27 a.m.13 views

CVE-2015-10146

CVE-2015-10146 affects the WordPress plugin Thumbnail Slider With Lightbox (plugin slug: wp-responsive-slider-with-lightbox). All versions up to and including 1.0.4 are vulnerable to SQL injection via the id parameter due to insufficient escaping and improper query construction. Exploitation requ...

4.9CVSS6.2AI score0.0027EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2025/10/29 6:13 a.m.8 views

WordPress Thumbnail Slider With Lightbox plugin <= 1.0.4 - Authenticated (Admin+) SQL Injection vulnerability

Authenticated Admin+ SQL Injection vulnerability discovered by Ala Arfaoui in WordPress Plugin Thumbnail Slider With Lightbox versions = 1.0.4...

4.9CVSS7.8AI score0.0027EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/29 12:0 a.m.7 views

PT-2025-44270

Name of the Vulnerable Software and Affected Versions Thumbnail Slider With Lightbox versions up to and including 1.0.4 Description The Thumbnail Slider With Lightbox plugin for WordPress is susceptible to SQL Injection through the id parameter. Insufficient escaping of user-supplied input and...

4.9CVSS6.6AI score0.0027EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/10/29 12:0 a.m.4 views

WordPress plugin Thumbnail Slider With Lightbox SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A SQL injection...

4.9CVSS7.7AI score0.0027EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/10/07 6:9 a.m.12 views

CVE-2025-9710

The Responsive Lightbox & Gallery WordPress plugin before 2.5.3 does not properly handle HTML tag attributes modifications, potentially allowing unauthenticated attackers to abuse the functionality to include event handlers and conduct Stored XSS attacks...

6.3CVSS6AI score0.00199EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-2485

Malware in sbrugna...

4.3CVSS6.2AI score0.01042EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-11579

Malware in sbrugna...

5.4CVSS5.6AI score0.00618EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-9262

Malware in sbrugna...

6.8CVSS6.4AI score0.01015EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-11426

Malware in sbrugna...

6.1CVSS6.3AI score0.0145EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-3065

Malware in sbrugna...

4.3CVSS6.4AI score0.01171EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2016-1859

Malware in sbrugna...

6.1CVSS6.3AI score0.00515EPSS
Exploits1References3
Patchstack
Patchstack
added 2025/10/06 10:32 p.m.6 views

WordPress Responsive Lightbox & Gallery plugin < 2.5.3 - Unauthenticated Stored-XSS via Comments vulnerability

Unauthenticated Stored-XSS via Comments vulnerability discovered by Matthew Rollings in WordPress Plugin Responsive Lightbox versions 2.5.3...

6.3CVSS6.8AI score0.00199EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/06 6:32 a.m.6 views

EUVD-2025-32491

The Responsive Lightbox & Gallery WordPress plugin before 2.5.3 does not properly handle HTML tag attributes modifications, potentially allowing unauthenticated attackers to abuse the functionality to include event handlers and conduct Stored XSS attacks...

6.3CVSS5.5AI score0.00199EPSS
Exploits0References3
NVD
NVD
added 2025/10/06 6:15 a.m.8 views

CVE-2025-9710

The Responsive Lightbox & Gallery WordPress plugin before 2.5.3 does not properly handle HTML tag attributes modifications, potentially allowing unauthenticated attackers to abuse the functionality to include event handlers and conduct Stored XSS attacks...

6.3CVSS0.00199EPSS
Exploits0References1
CVE
CVE
added 2025/10/06 6:0 a.m.24 views

CVE-2025-9710

The vulnerability CVE-2025-9710 affects the WordPress plugin Responsive Lightbox & Gallery (versions before 2.5.3). The issue arises from improper handling of HTML tag attribute modifications, enabling an unauthenticated attacker to abuse the feature to inject event handlers and perform Stored XS...

6.3CVSS5.6AI score0.00199EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/06 6:0 a.m.14 views

CVE-2025-9710 Responsive Lightbox & Gallery < 2.5.3 - Unauthenticated Stored-XSS via Comments

The Responsive Lightbox & Gallery WordPress plugin before 2.5.3 does not properly handle HTML tag attributes modifications, potentially allowing unauthenticated attackers to abuse the functionality to include event handlers and conduct Stored XSS attacks...

0.00199EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/06 6:0 a.m.2 views

CVE-2025-9710 Responsive Lightbox & Gallery < 2.5.3 - Unauthenticated Stored-XSS via Comments

The Responsive Lightbox & Gallery WordPress plugin before 2.5.3 does not properly handle HTML tag attributes modifications, potentially allowing unauthenticated attackers to abuse the functionality to include event handlers and conduct Stored XSS attacks...

5.6AI score0.00199EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/06 12:0 a.m.3 views

WordPress plugin Responsive Lightbox & Gallery 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A security...

6.3CVSS5.7AI score0.00199EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/06 12:0 a.m.10 views

PT-2025-40854

Name of the Vulnerable Software and Affected Versions Responsive Lightbox & Gallery WordPress plugin versions prior to 2.5.3 Description The software does not properly handle HTML tag attribute modifications, which could allow unauthenticated attackers to include event handlers and conduct Stored...

6.3CVSS5.2AI score0.00199EPSS
Exploits0References6
Rows per page
Query Builder