CVE-2026-2479 | Responsive Lightbox & Gallery Plugin up to 2.7.1 on WordPress strpos server-side request forgery

Inserito da Angelo Barbosa | Feb 24, 2026 | CVE

A vulnerability categorized as critical has been discovered in Responsive Lightbox & Gallery Plugin up to 2.7.1 on WordPress. The impacted element is the function strpos. Such manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2026-2479. The attack may be launched remotely. There is no exploit available.

CVE-2026-2479 | Responsive Lightbox & Gallery Plugin up to 2.7.1 on WordPress strpos server-side request forgery

Post correlati

CVE-2025-0211 | Campcodes School Faculty Scheduling System 1.0 /admin/index.php page file inclusion

CVE-2023-4234 | oFono SMS Decoder stack-based overflow (ZDI-23-1858)

CVE-2025-21107 | Dell NetWorker up to 19.9/19.10.0.6/19.11.0.2 unquoted search path (dsa-2025-064)

CVE-2024-25123 | Open-MSS up to 8.3.2 index.py filename path traversal (GHSA-pf2h-qjcr-qvq2)