Lucene search
PliggPligg Cms1.1.3
2 matches found
CVE-2011-3986
Cross-site scripting (XSS) vulnerability in Pligg before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
4.3CVSS5.7AI score0.00318EPSS
CVE-2011-3794
Pligg CMS 1.1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by widgets/statistics/init.php and certain other files.
5CVSS6.3AI score0.00283EPSS