CVE-2011-5191

Name of the Vulnerable Software and Affected Versions Pretty Link Lite plugin versions prior to 1.5.4

Description The issue is related to a cross-site scripting (XSS) vulnerability. It allows remote attackers to inject arbitrary web script or HTML via the slug parameter in the pretty-bar.php file.

Recommendations For versions prior to 1.5.4, update to version 1.5.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the pretty-bar.php file until the update is applied. Avoid using the slug parameter in the affected plugin until the issue is resolved.