CVE-2025-60124 | Ryan Hellyer Simple Colorbox Plugin up to 1.6.1 on WordPress cross site scripting

September 26, 2025 Yanac

A vulnerability classified as problematic was found in Ryan Hellyer Simple Colorbox Plugin up to 1.6.1 on WordPress. This vulnerability affects unknown code. Executing manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2025-60124. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-60112 | Syed Balkhi aThemes Addons for Elementor Plugin up to 1.1.3 on WordPress cross site scripting
UK and US security agencies order urgent fixes as Cisco firewall bugs exploited in wild