CVE-2025-15386 | Responsive Lightbox & Gallery Plugin up to 2.6.0 on WordPress Link cross site scripting

Inserito da Angelo Barbosa | Feb 24, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Responsive Lightbox & Gallery Plugin up to 2.6.0 on WordPress. Impacted is an unknown function of the component Link Handler. The manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-15386. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2025-15386 | Responsive Lightbox & Gallery Plugin up to 2.6.0 on WordPress Link cross site scripting

Post correlati

CVE-2026-22284 | Dell SmartFabric OS10 Software 10.5.3/10.5.4/10.5.5/10.5.6 command injection (dsa-2026-033)

CVE-2024-38461 | iRODS up to 4.3.1 irodsServerMonPerf Privilege Escalation

CVE-2020-3432 | Cisco AnyConnect Secure Mobility Client on macOS Uninstaller link following (cisco-sa-anyconnect-mac-dos-36s2y3Lv)

CVE-2024-3276 | Lightbox & Modal Popup Plugin up to 2.7.27 on WordPress Setting cross site scripting