VYPR

CMS

by Pligg

CVEs (46)

  • CVE-2023-37677CriJul 25, 2023
    risk 0.64cvss 9.8epss 0.01

    Pligg CMS v2.0.2 (also known as Kliqqi) was discovered to contain a remote code execution (RCE) vulnerability in the component admin_editor.php.

  • CVE-2022-34956CriAug 2, 2022
    risk 0.64cvss 9.8epss 0.01

    Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_groups.php.

  • CVE-2022-34955CriAug 2, 2022
    risk 0.64cvss 9.8epss 0.01

    Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_topusers.php.

  • CVE-2020-21121CriSep 15, 2021
    risk 0.64cvss 9.8epss 0.01

    Pligg CMS 2.0.2 contains a time-based SQL injection vulnerability via the $recordIDValue parameter in the admin_update_module_widgets.php file.

  • CVE-2024-42619HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/domain_management.php?id=0&list=whitelist&remove=pligg.com

  • CVE-2024-42612HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/domain_management.php?whitelist_add

  • CVE-2024-42621HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_editor.php

  • CVE-2024-42618HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /module.php?module=karma

  • CVE-2024-42617HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_config.php?action=save&var_id=32

  • CVE-2024-42616HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=remove&widget=Statistics

  • CVE-2024-42613HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=install&widget=akismet

  • CVE-2024-42611HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/admin_page.php?link_id=1&mode=delete

  • CVE-2024-42610HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=files

  • CVE-2024-42609HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=avatars

  • CVE-2024-42607HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=database

  • CVE-2024-42606HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_log.php?clear=1

  • CVE-2024-42605HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/edit_page.php?link_id=1

  • CVE-2024-42604HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_group.php?mode=delete&group_id=3

  • CVE-2024-42603HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=clearall

  • CVE-2024-42608HigAug 20, 2024
    risk 0.57cvss 8.8epss 0.00

    Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/submit_page.php.

Page 1 of 3