CVE-2025-5092
Description
Multiple plugins and/or themes for WordPress are vulnerable to Stored Cross-Site Scripting via the plugin's bundled lightGallery library (<= 2.8.3) in various versions due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CWE
- CWE-79 — CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Affected
- lightgalleryteam / LightGallery WP — v=0 ≤1.0.5 [affected]
- tplugins / TP WooCommerce Product Gallery — v=0 ≤1.1.9 [affected]
- vowelweb / Ibtana – WordPress Website Builder — v=0 ≤1.2.5.1 [affected]
- wproyal / Royal Addons for Elementor – Addons and Templates Kit for Elementor — v=0 ≤1.7.1031 [affected]
- wpsofts / Portfolio, Gallery, Product Catalog – Grid KIT Portfolio — v=0 ≤2.2.1 [affected]
- famethemes / OnePress — v=0 ≤2.3.16 [affected]
- galaxyweblinks / Gallery with thumbnail slider — v=0 ≤7.8 [affected]
- oxilab / Image Hover Effects Ultimate ( Image Gallery, Effects, Lightbox, Comparison & Magnifier ) — v=0 ≤9.10.5 [affected]
CVSS
- 3.1 score=6.4 severity=MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
References
- https://www.wordfence.com/threat-intel/vulnerabilities/id/acaa3142-2bbc-43d3-8ecc-05e8edb931ec?source=cve
- https://github.com/sachinchoolur/lightGallery
- https://plugins.trac.wordpress.org/changeset/3311382/
- https://plugins.trac.wordpress.org/changeset/3356089/
- https://plugins.trac.wordpress.org/changeset/3372141/
- https://plugins.trac.wordpress.org/changeset/3343557/
- https://themes.trac.wordpress.org/changeset/299860
Source
cvelistV5-main/cves/2025/5xxx/CVE-2025-5092.json