Cross-Site Scripting (XSS) Vulnerabilities in Kliqqi CMS 3.5.2

Cross-Site Scripting (XSS) Vulnerabilities in Kliqqi CMS 3.5.2

CVE-2017-17889 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Kliqqi CMS 3.5.2 has XSS via a crafted group name in pligg/groups.php, a crafted Homepage string in a profile, or a crafted string in Tags or Description within pligg/submit.php.

Learn more about our Cms Pen Testing.