Cross-Site Scripting Vulnerability in ARI Fancy Lightbox by Arisoft
CVE-2025-58784
6.5MEDIUM
What is CVE-2025-58784?
The ARI Fancy Lightbox plugin from Arisoft contains a Cross-Site Scripting vulnerability that allows attackers to inject malicious scripts through improper input handling during web page generation. This vulnerability can lead to stored XSS attacks, compromising the security and integrity of the affected website. Versions n/a through 1.4.0 are susceptible, making it crucial for site administrators to apply necessary updates and mitigate risks.
Affected Version(s)
ARI Fancy Lightbox <= 1.4.0