Filtered by vendor Ceikay
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2024-35756 | 1 Ceikay | 1 Tooltip Ck | 2024-11-21 | N/A | 5.9 MEDIUM |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CeiKay Tooltip CK tooltip-ck allows Stored XSS.This issue affects Tooltip CK: from n/a through 2.2.15. | |||||
CVE-2022-1336 | 1 Ceikay | 1 Carousel Ck | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
The Carousel CK WordPress plugin through 1.1.0 does not sanitize and escape Slide's descriptions, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks when unfiltered_html is disallowed | |||||
CVE-2022-1335 | 1 Ceikay | 1 Slideshow Ck | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
The Slideshow CK WordPress plugin before 1.4.10 does not sanitize and escape Slide's descriptions, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks when unfiltered_html is disallowed |