Secunia Security Advisory – Two vulnerabilities have been reported in Lightbox2 module for Drupal, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site scripting attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/94184/sa41576.txt
Source: https://packetstormsecurity.com/files/94184/Secunia-Security-Advisory-41576.html