CVE-2025-12359 | Responsive Lightbox & Gallery Plugin up to 2.5.3 on WordPress get_image_size_by_url server-side request forgery

Inserito da Angelo Barbosa | Nov 18, 2025 | CVE

A vulnerability classified as critical was found in Responsive Lightbox & Gallery Plugin up to 2.5.3 on WordPress. Affected is the function get_image_size_by_url. The manipulation results in server-side request forgery.

This vulnerability is reported as CVE-2025-12359. The attack can be launched remotely. No exploit exists.

CVE-2025-12359 | Responsive Lightbox & Gallery Plugin up to 2.5.3 on WordPress get_image_size_by_url server-side request forgery

Post correlati

CVE-2024-1165 | Brizy Page Builder Plugin up to 2.4.39 on WordPress path traversal

CVE-2025-4061 | code-projects Clothing Store Management System up to 1.0 add_item st.productname stack-based overflow

CVE-2025-58286 | Huawei HarmonyOS 5.0.1/5.1.0 Office Service path traversal

CVE-2024-8207 | MongoDB Server up to 5.0.13/6.0.2 on Linux Library process control