4 matches found
CVE-2024-5878
creationtimestamp| type| source ---|---|--- 2025-05-20 07:39:50+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16955 2025-05-20 11:13:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lplxfznmww2h...
CVE-2024-5878 Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via SimpleLightbox JavaScript Library
Multiple plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the plugin's bundled SimpleLightbox JavaScript library version 2.1.5 in various versions due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticate...
WordPress NextGEN Gallery plugin <= 3.59.4 - Stored DOM-Based Cross-Site Scripting via SimpleLightbox JavaScript Library
Stored DOM-Based Cross-Site Scripting via SimpleLightbox JavaScript Library vulnerability discovered by Webbernaut in WordPress Plugin NextGEN Gallery versions = 3.59.4...
WordPress Simplelightbox plugin <= 2.14.4 - Stored DOM-Based Cross-Site Scripting via SimpleLightbox JavaScript Library
Stored DOM-Based Cross-Site Scripting via SimpleLightbox JavaScript Library vulnerability discovered by Webbernaut in WordPress Plugin Simplelightbox versions = 2.14.4...