Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-1336

Disclosure Date: June 13, 2022 (last updated February 23, 2025)
The Carousel CK WordPress plugin through 1.1.0 does not sanitize and escape Slide's descriptions, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks when unfiltered_html is disallowed
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0