Description elgg is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor Remediation References CVE-2021-3980 Related Vulnerabilities WordPress Plugin Contact Form by WD-responsive drag & drop contact form builder tool SQL Injection (1.7.30) SharePoint Improper Authorization Vulnerability (CVE-2025-29794) WordPress Plugin WooCommerce Cart Expiration PHP Object Injection (0.1.0) PHP Use After Free Vulnerability (CVE-2024-11235) Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5488) Severity High Classification CVE-2021-3980 CWE-359 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities