Lucene search
K

5 matches found

NVD
NVD
added 2024/06/18 6:15 a.m.32 views

CVE-2024-3276

The Lightbox & Modal Popup WordPress Plugin WordPress plugin before 2.7.28, foobox-image-lightbox-premium WordPress plugin before 2.7.28 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when...

6.1CVSS0.00335EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/06/18 6:0 a.m.37 views

CVE-2024-3276 FooBox (Free and Premium) < 2.7.28 - Admin+ Stored XSS

The Lightbox & Modal Popup WordPress Plugin WordPress plugin before 2.7.28, foobox-image-lightbox-premium WordPress plugin before 2.7.28 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when...

0.00335EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/06/18 6:0 a.m.21 views

CVE-2024-3276 FooBox (Free and Premium) < 2.7.28 - Admin+ Stored XSS

The Lightbox & Modal Popup WordPress Plugin WordPress plugin before 2.7.28, foobox-image-lightbox-premium WordPress plugin before 2.7.28 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when...

5.6AI score0.00335EPSS
Exploits2References1
Patchstack
Patchstack
added 2024/05/28 12:0 a.m.13 views

WordPress FooBox Image Lightbox Plugin < 2.7.28 is vulnerable to Cross Site Scripting (XSS)

Software FooBox Image Lightbox Type Plugin Vulnerable versions 2.7.28 Fixed in 2.7.28 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3276 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 8576ba9ab955 Credits Dmitrii Ignatyev...

6.1CVSS5AI score0.00335EPSS
Exploits2References4Affected Software1
Patchstack
Patchstack
added 2024/05/28 12:0 a.m.13 views

WordPress Foobox Image Lightbox Premium Plugin < 2.7.28 is vulnerable to Cross Site Scripting (XSS)

Software Foobox Image Lightbox Premium Type Plugin Vulnerable versions 2.7.28 Fixed in 2.7.28 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3276 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a7657ab0a7ef Credits Dmitrii...

6.1CVSS5AI score0.00335EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder