Seamlessly integrates FancyBox into your blog: Upload, activate, and you're done. Additional configuration optional.
- There was a vulnerability detected in versions 3.0.2 and lower, is my site in danger?
This vulnerability was patched in version 3.0.3.
An additional change was introduced in version 3.0.4 to make sure that the malicious code can't be printed to visitors even if it still remains in the database.
If you think your site might still be using a vulnerable version of the plugin please log in to your WordPress admin panel, disable the plugin and clear any cache if your site uses a cache system.
If you wish to continue using the plugin, check that the plugin is updated to the latest version from your admin panel and enable it. Then check the plugin's settings page and make sure there's no abnormal code in any of the fields, especially on the Extra Calls tab. If you are not sure about the code you see in the settings please use the Revert to Defaults button at the bottom of the settings page.
If you think your site might be compromised in any other way check this guide: WordPress Codex - FAQ My site was hacked.
- Is the FancyBox script vulnerable or unsafe?
No, there's nothing wrong with the actual FancyBox script that i know of.
The vulnerability detected in versions 3.0.2 and lower of the "FancyBox for WordPress" plugin was limited to the plugin itself. Other FancyBox plugins or manual implementations of FancyBox are unrelated to this issue.
Requires: 3.4 or higher
Compatible up to: 4.1.5
Last Updated: 2015-2-26
Active Installs: 100,000+
1 of 9 support threads in the last two months have been resolved.
Got something to say? Need help?