VYPR

Lightbox Plus Colorbox

by WordPress

CVEs (1)

  • CVE-2016-10865MedAug 9, 2019
    risk 0.40cvss 6.1epss 0.01

    The Lightbox Plus Colorbox plugin through 2.7.2 for WordPress has cross-site request forgery (CSRF) via wp-admin/admin.php?page=lightboxplus, as demonstrated by resultant width XSS.