CVE-2026-2300 | bjornjohansen BJ Lazy Load Plugin up to 1.0.9 on WordPress filter_images Class cross site scripting

Inserito da Angelo Barbosa | Mag 12, 2026 | CVE

A vulnerability identified as problematic has been detected in bjornjohansen BJ Lazy Load Plugin up to 1.0.9 on WordPress. Affected by this vulnerability is the function filter_images. The manipulation of the argument Class leads to cross site scripting.

This vulnerability is referenced as CVE-2026-2300. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-2300 | bjornjohansen BJ Lazy Load Plugin up to 1.0.9 on WordPress filter_images Class cross site scripting

Post correlati

CVE-2024-27686 | MikroTik RouterOS 5.0/6.44/6.49.10 SMB Request denial of service (ID 177811)

CVE-2026-2701 | Progress ShareFile Storage Zones Controller up to 5.12.3 unrestricted upload

CVE-2024-55985 | ydesignservices YDS Support Ticket System Plugin up to 1.0 on WordPress sql injection

CVE-2024-10898 | krishaweb Contact Form 7 Email Add On Plugin up to 1.9 on WordPress cf7_email_add_on_add_admin_template filename control