Geekiroxx

**Name of the Vulnerable Software and Affected Versions** PluXml versions prior to 5.1.6 **Description** The issue allows remote attackers to obtain the installation path via the `PHPSESSID`. **Recommendations** For versions prior to 5.1.6, update to version 5.1.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** PluXml version 5.1.6 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to file update. **Recommendations** For PluXml version 5.1.6, update to a version that fixes this issue, as using outdated software can pose significant security risks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.