CVE-2026-28103

CVE-2026-28103 is a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin LambertGroup LBG Zoominoutslider (lbg_zoominoutslider). Affected: versions up to and including 5.4.5. CVSS v3.1 base score 7.1 (HIGH) with Network attack vector, no privileges required, user interaction...

WordPress LBG Zoominoutslider Plugin - Stored Cross Site Scripting #2

This plugin is prone to a cross site scripting vulnerability via settingsform.php multiple parameter. Solution Update the plugin...

WordPress LBG Zoominoutslider Plugin - Stored Cross Site Scripting #1

This plugin is prone to a cross site scripting vulnerability via "post" method. Solution Upgrade the plugin...