N/A
2025-09-15< 2.5.3
Responsive Lightbox & Gallery <= 2.5.2 - Unauthenticated Stored Cross-Site Scripting
Responsive Lightbox & Gallery
Minimum safe version
2.7.2
Update to 2.7.2 or later to address 18 fixable vulnerabilities
Latest available2.7.6 ✓
Medium 5.4
2025-06-27< 2.5.2
Responsive Lightbox & Gallery <= 2.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
N/A
2026-02-24< 2.7.2
Responsive Lightbox & Gallery <= 2.7.1 - Authenticated (Author+) Server-Side Request Forgery via Remote Library Image Upload
High 8.8
2026-02-24< 2.6.1
CVE-2025-15386
Medium 5.4
2025-11-19< 2.5.4
CVE-2025-12359
Medium 6.3
2025-10-06< 2.5.3
CVE-2025-60452
Medium 6.8
2025-05-15< 2.5.1
Responsive Lightbox & Gallery <= 2.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
Medium 6.4
2025-03-05< 2.4.8
Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Featherlight.js JavaScript Library
Medium 6.4
2024-12-04< 2.4.9
Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript Library
Medium 5.9
2024-10-17< 2.4.9
CVE-2024-49282
Critical 9.8
2024-10-23< 2.4.8
CVE-2024-43924
Medium 5.4
2024-08-22< 2.4.8
CVE-2024-6870
High 8.8
2024-06-09< 2.4.7
CVE-2024-31252
Medium 5.9
2023-12-15< 2.4.6
CVE-2023-49174
N/A
2014-08-01< 1.4.12
PrettyPhoto Library (Multiple Plugins and Themes) <= 3.1.4 - DOM Cross-Site Scripting
N/A
2022-11-04< 2.4.2
Responsive Lightbox & Gallery <= 2.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting
N/A
2015-05-14< 1.4.12
WordPress Responsive Lightbox Plugin <= 1.4.11 - XSS
Medium 6.1
2017-07-07< 1.7.2
CVE-2017-2243