Vulnerabilities > Elgg > Elgg > 3.3.6
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-24 | CVE-2021-4072 | Cross-site Scripting vulnerability in Elgg elgg is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 3.5 |
2021-12-03 | CVE-2021-3980 | Privacy Violation vulnerability in Elgg elgg is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor | 5.0 |
2021-12-01 | CVE-2021-3964 | Authorization Bypass Through User-Controlled Key vulnerability in Elgg elgg is vulnerable to Authorization Bypass Through User-Controlled Key | 4.3 |