Sayandatta Simple Posts Ticker — known CVE vulnerabilities
Every CVE whose affected-product data names Sayandatta Simple Posts Ticker, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-4646 — CVSS 5.4 (medium): The Simple Posts Ticker WordPress plugin before 1.1.6 does not validate and escape some of its shortcode attributes before outputting them…
CVE-2023-4725 — CVSS 4.8 (medium): The Simple Posts Ticker WordPress plugin before 1.1.6 does not sanitise and escape some of its settings, which could allow high privilege…