Product:

Pligg_cms

(Pligg)
Repositories https://github.com/Pligg/pligg-cms
#Vulnerabilities 41
Date Id Summary Products Score Patch Annotated
2022-08-02 CVE-2022-34956 Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_groups.php. Pligg_cms 9.8
2022-08-02 CVE-2022-34955 Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_topusers.php. Pligg_cms 9.8
2023-07-25 CVE-2023-37677 Pligg CMS v2.0.2 (also known as Kliqqi) was discovered to contain a remote code execution (RCE) vulnerability in the component admin_editor.php. Pligg_cms 9.8
2024-08-20 CVE-2024-42604 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_group.php?mode=delete&group_id=3 Pligg_cms 8.8
2024-08-20 CVE-2024-42608 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/submit_page.php. Pligg_cms 8.8
2024-08-20 CVE-2024-42603 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=clearall Pligg_cms 8.8
2024-08-20 CVE-2024-42605 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/edit_page.php?link_id=1 Pligg_cms 8.8
2024-08-20 CVE-2024-42606 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_log.php?clear=1 Pligg_cms 8.8
2024-08-20 CVE-2024-42607 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=database Pligg_cms 8.8
2024-08-20 CVE-2024-42609 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=avatars Pligg_cms 8.8