Unrated severityNVD Advisory· Published Aug 16, 2010· Updated Apr 29, 2026
CVE-2010-2577
CVE-2010-2577
Description
Multiple SQL injection vulnerabilities in Pligg before 1.1.1 allow remote attackers to execute arbitrary SQL commands via the title parameter to (1) storyrss.php or (2) story.php.
Affected products
11cpe:2.3:a:pligg:pligg_cms:*:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:pligg:pligg_cms:*:*:*:*:*:*:*:*range: <=1.1.0
- cpe:2.3:a:pligg:pligg_cms:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:pligg:pligg_cms:1.0.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:pligg:pligg_cms:1.0.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:pligg:pligg_cms:1.0.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:pligg:pligg_cms:1.0.0:rc4:*:*:*:*:*:*
- cpe:2.3:a:pligg:pligg_cms:1.0.0:rc5:*:*:*:*:*:*
- cpe:2.3:a:pligg:pligg_cms:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:pligg:pligg_cms:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:pligg:pligg_cms:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:pligg:pligg_cms:1.0.4:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- secunia.com/advisories/40931nvdVendor Advisory
- secunia.com/secunia_research/2010-111/nvdVendor Advisory
- www.pligg.com/blog/991/pligg-cms-1-1-1-release/nvdVendor Advisory
- www.osvdb.org/67067nvd
- www.osvdb.org/67068nvd
- www.securityfocus.com/bid/42408nvd
News mentions
0No linked articles in our index yet.