All 4 CVE vulnerabilities found in WP Lightbox 2, with AI-generated Chinese analysis, references, and POCs.
Vendor: Syed Balkhi
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-1430 | WP Lightbox 2 < 3.0.7 - Admin+ Stored XSS | 4.8 | - | 2026-03-26 |
| CVE-2025-3745 | WP Lightbox 2 < 3.0.6.8 - Unauthenticated Stored XSS | 6.1AI | MediumAI | 2025-06-30 |
| CVE-2024-6263 | WP Lightbox 2 <= 3.0.6.6 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting CWE-79 | 6.4 | Medium | 2024-07-03 |
| CVE-2023-45747 | WordPress WP Lightbox 2 Plugin <= 3.0.6.5 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 5.9 | Medium | 2023-10-24 |
All 4 known CVE vulnerabilities affecting WP Lightbox 2 with full Chinese analysis, references, and POCs where available.