CVE-2024-3276 in Lightbox & Modal Popup Plugin정보

요약

\~에 의해 MITRE • 2024. 06. 18.

The Lightbox & Modal Popup WordPress Plugin WordPress plugin before 2.7.28, foobox-image-lightbox-premium WordPress plugin before 2.7.28 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

출처

Want to stay up to date on a daily basis?

Enable the mail alert feature now!