Firelight Lightbox

Vulnerabilities 6Slug easy-fancyboxLatest version 2.3.20WordPress.org →

Minimum safe version

2.3.17

Update to 2.3.17 or later to address 6 fixable vulnerabilities

Latest available2.3.20 ✓

Medium 5.4

2025-06-27< 2.3.16

Firelight Lightbox <= 2.3.15 - Authenticated (Contributor+) Stored Cross-Site Scripting

Medium 6.5

2025-06-20< 2.3.17

CVE-2025-52707

Medium 5.9

2025-05-12< 2.3.15

Firelight Lightbox <= 2.3.14 - Authenticated (Contributor+) Stored Cross-Site Scripting

Medium 6.4

2024-12-04< 2.3.4

Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript Library

Medium 5.9

2024-10-28< 2.3.4

CVE-2024-50460

Medium 4.8

2019-09-26< 1.8.18

CVE-2019-16524