CVE-2025-54051

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions bPlugins LightBox Block versions through 1.1.30

Description The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-site Scripting (XSS). This can lead to the execution of malicious scripts on a user's web page.

Recommendations Update bPlugins LightBox Block to a version later than 1.1.30.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2025-54051

Affected Products

Bplugins Lightbox Block

CVE-2025-54051

Weakness Enumeration

Related Identifiers

Affected Products

References · 4