Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pligg pligg cms vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-7091
Multiple SQL injection vulnerabilities in Pligg 9.9 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to vote.php, which is not properly handled in libs/link.php; (2) id parameter to trackback.php; (3) an unspecified par...
Pligg Pligg Cms 9.9.0
Pligg Pligg Cms
Pligg Pligg Cms 9.5
2 EDB exploits
4.3
CVSSv2
CVE-2008-7089
Cross-site scripting (XSS) vulnerability in Pligg 9.9 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the keyword parameter in a search action to user.php and other unspecified vectors.
Pligg Pligg Cms 9.9.0
Pligg Pligg Cms 9.5
Pligg Pligg Cms
1 EDB exploit
7.8
CVSSv2
CVE-2008-7090
Multiple directory traversal vulnerabilities in Pligg 9.9 and previous versions allow remote malicious users to (1) determine the existence of arbitrary files via a .. (dot dot) in the $tb_url variable in trackback.php, or (2) include arbitrary files via a .. (dot dot) in the tem...
Pligg Pligg Cms 9.5
Pligg Pligg Cms
1 EDB exploit
7.5
CVSSv2
CVE-2014-9096
Multiple SQL injection vulnerabilities in recover.php in Pligg CMS 2.0.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id or (2) n parameter.
Pligg Pligg Cms
1 EDB exploit
7.5
CVSSv2
CVE-2011-5022
SQL injection vulnerability in search.php in Pligg CMS 1.1.2 allows remote malicious users to execute arbitrary SQL commands via the status parameter.
Pligg Pligg Cms 1.1.2
1 EDB exploit
4.3
CVSSv2
CVE-2008-3572
Cross-site scripting (XSS) vulnerability in index.php in Pligg 9.9.5 allows remote malicious users to inject arbitrary web script or HTML via the category parameter.
Pligg Pligg Cms 9.9.5
NA
CVE-2023-37677
Pligg CMS v2.0.2 (also known as Kliqqi) exists to contain a remote code execution (RCE) vulnerability in the component admin_editor.php.
Pligg Pligg Cms 2.0.2
7.5
CVSSv2
CVE-2008-5739
SQL injection vulnerability in evb/check_url.php in Pligg CMS 9.9.5 Beta allows remote malicious users to execute arbitrary SQL commands via the url parameter.
Pligg Pligg Cms 9.9.5
1 EDB exploit
6.8
CVSSv2
CVE-2015-6655
Cross-site request forgery (CSRF) vulnerability in Pligg CMS 2.0.2 allows remote malicious users to hijack the authentication of administrators for requests that add an administrator via a request to admin/admin_users.php.
Pligg Pligg Cms 2.0.2
1 EDB exploit
NA
CVE-2022-34955
Pligg CMS v2.0.2 exists to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_topusers.php.
Pligg Pligg Cms 2.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »