CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-5023

Cross-site scripting (XSS) vulnerability in Pligg CMS 1.1.4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the search program, a different vulnerability than CVE-2011-3986.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.3%

CVSS Severity

CVSS v2 Score 4.3

References

http://pligg.svn.sourceforge.net/viewvc/pligg?view=revision&revision=2257
http://www.securityfocus.com/bid/51274
https://sitewat.ch/Advisory/View/6
http://pligg.svn.sourceforge.net/viewvc/pligg?view=revision&revision=2257
http://www.securityfocus.com/bid/51274
https://sitewat.ch/Advisory/View/6

Products affected by CVE-2011-5023

Pligg » Pligg Cms » Version: 1.1.4

cpe:2.3:a:pligg:pligg_cms:1.1.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-5023

Products

Pricing

Contact Us