Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pligg vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2020-25287
Pligg 2.0.3 allows remote authenticated users to execute arbitrary commands because the template editor can edit any file, as demonstrated by an admin/admin_editor.php the_file=..%2Findex.php&open=Open request.
Pligg Project Pligg 2.0.3
1 Github repository
755
VMScore
CVE-2008-3366
SQL injection vulnerability in story.php in Pligg CMS Beta 9.9.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: this might overlap CVE-2008-1774.
Pligg Pligg Cms 9.9.0
1 EDB exploit
383
VMScore
CVE-2008-3572
Cross-site scripting (XSS) vulnerability in index.php in Pligg 9.9.5 allows remote malicious users to inject arbitrary web script or HTML via the category parameter.
Pligg Pligg Cms 9.9.5
NA
CVE-2023-37677
Pligg CMS v2.0.2 (also known as Kliqqi) exists to contain a remote code execution (RCE) vulnerability in the component admin_editor.php.
Pligg Pligg Cms 2.0.2
755
VMScore
CVE-2008-6968
Multiple SQL injection vulnerabilities in submit.php in Pligg CMS 9.9.5 allow remote malicious users to execute arbitrary SQL commands via the (1) category and (2) id parameters.
Pligg Pligg Cms 9.9.5
1 EDB exploit
435
VMScore
CVE-2011-5023
Cross-site scripting (XSS) vulnerability in Pligg CMS 1.1.4 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to the search program, a different vulnerability than CVE-2011-3986.
Pligg Pligg Cms 1.1.4
1 EDB exploit
755
VMScore
CVE-2008-5739
SQL injection vulnerability in evb/check_url.php in Pligg CMS 9.9.5 Beta allows remote malicious users to execute arbitrary SQL commands via the url parameter.
Pligg Pligg Cms 9.9.5
1 EDB exploit
755
VMScore
CVE-2011-5022
SQL injection vulnerability in search.php in Pligg CMS 1.1.2 allows remote malicious users to execute arbitrary SQL commands via the status parameter.
Pligg Pligg Cms 1.1.2
1 EDB exploit
505
VMScore
CVE-2008-3573
The CAPTCHA implementation in (1) Pligg 9.9.5 and possibly (2) Francisco Burzi PHP-Nuke 8.1 provides a critical random number (the ts_random value) within the URL in the SRC attribute of an IMG element, which allows remote malicious users to pass the CAPTCHA test via a calculatio...
Pligg Pligg 9.9.5
Php-nuke Php-nuke 8.1
1 EDB exploit
NA
CVE-2012-24361
Pligg CMS version 1.2.1 suffers from cross site scripting and local file inclusion vulnerabilities.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »