Fancy Lightbox < 1.0.2 - Authenticated Stored Cross-Site Scripting. Vulnerable 'hyperlink' field allows stored XSS when linking remote resources. Triggered by plugin shortcode on WordPress website
Source | Link |
---|---|
melbin | www.melbin.in/2020/08/14/stored-xss-vulnerability-in-wordpress-fancybox-lightbox-plugin/ |
packetstormsecurity | www.packetstormsecurity.com/files/158885/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo