Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-1335

Disclosure Date: June 13, 2022 (last updated October 07, 2023)
The Slideshow CK WordPress plugin before 1.4.10 does not sanitize and escape Slide's descriptions, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks when unfiltered_html is disallowed
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0