N/A Unfixed
2025-11-19≤ 2.3.16
Multiple Plugins and Themes <= (Various Versions) - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via lightGallery JavaScript Library
OnePress
Minimum safe version
2.3.7
Update to 2.3.7 or later to address 1 fixable vulnerability
Latest available2.3.17 ✓⚠ 3 vulnerabilities have no fix
Medium 4.3 Unfixed
2025-02-04≤ 2.3.11
CVE-2025-22643
Medium 6.5 Unfixed
2024-07-20≤ 2.3.8
CVE-2024-38739
Medium 4.3
2025-01-02< 2.3.7
CVE-2024-37448