CVE-2026-2300 | bjornjohansen BJ Lazy Load Plugin up to 1.0.9 on WordPress filter_images Class cross site scripting

Inserito da Angelo Barbosa | Mag 12, 2026 | CVE

A vulnerability identified as problematic has been detected in bjornjohansen BJ Lazy Load Plugin up to 1.0.9 on WordPress. Affected by this vulnerability is the function filter_images. The manipulation of the argument Class leads to cross site scripting.

This vulnerability is referenced as CVE-2026-2300. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-2300 | bjornjohansen BJ Lazy Load Plugin up to 1.0.9 on WordPress filter_images Class cross site scripting

Post correlati

CVE-2025-54881 | mermaid up to 11.9.0 cross site scripting (GHSA-7rqq-prvp-x9jh)

CVE-2025-36573 | Dell Smart Dock prior 01.00.08.01 log file (dsa-2025-218)

CVE-2026-29795 | stellar rs–xdr up to 25.0.0 StringM::from_str allocation of resources

CVE-2022-49165 | Linux Kernel up to 5.15.32/5.16.18/5.17.1 mxc_jpeg_addrs null pointer dereference