Vulnerabilities (CVE)

Filtered by vendor Ceikay Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-1336 1 Ceikay 1 Carousel Ck 2022-06-17 3.5 LOW 4.8 MEDIUM
The Carousel CK WordPress plugin through 1.1.0 does not sanitize and escape Slide's descriptions, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks when unfiltered_html is disallowed
CVE-2022-1335 1 Ceikay 1 Slideshow Ck 2022-06-17 3.5 LOW 4.8 MEDIUM
The Slideshow CK WordPress plugin before 1.4.10 does not sanitize and escape Slide's descriptions, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks when unfiltered_html is disallowed