Image Hover Effects Ultimate ( Image Gallery, Effects, Lightbox, Comparison & Magnifier )

Vulnerabilities 9Slug image-hover-effects-ultimateLatest version 9.11.4WordPress.org →

Minimum safe version

9.8.0

Update to 9.8.0 or later to address 7 fixable vulnerabilities

Latest available9.11.4 ✓Affected up to9.8.4 ⚠⚠ 1 vulnerability has no fix

N/A Unfixed

2025-11-19≤ 9.10.5

Multiple Plugins and Themes <= (Various Versions) - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via lightGallery JavaScript Library

Wordfence CVE

Medium 5.4

2022-12-20≥ 9.8.1 and ≤ 9.8.4

WordPress Image Hover Effects Ultimate Plugin 9.8.1-9.8.4 is vulnerable to Cross Site Scripting (XSS)

Patchstack CVE Wordfence WPScan

High 7.2

2022-11-18< 9.7.2

CVE-2022-42459

CVE Patchstack Wordfence WPScan

Medium 5.4

2022-09-23< 9.8.0

CVE-2022-2937

CVE Wordfence WPScan

Medium 5.4

2022-09-06< 9.8.0

CVE-2022-2935

CVE Wordfence

Medium 5.4

2022-09-06< 9.8.0

CVE-2022-2936

CVE Wordfence

Medium 4.8

2022-05-20< 9.7.2

CVE-2022-29424

CVE Patchstack Wordfence WPScan

Critical 9.8

2021-12-15< 9.7.0

CVE-2021-36888

CVE Patchstack Wordfence WPScan

Medium 6.1

2022-01-24< 9.7.1

CVE-2021-25031

CVE Patchstack Wordfence WPScan