Vulnerabilities > Kliqqi > Kliqqi CMS > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-02-15 CVE-2020-21119 SQL Injection vulnerability in Kliqqi CMS 2.0.2
SQL Injection vulnerability in Kliqqi-CMS 2.0.2 in admin/admin_update_module_widgets.php in recordIDValue parameter, allows attackers to gain escalated privileges and execute arbitrary code.
network
low complexity
kliqqi CWE-89
critical
 9.8
9.8
2021-09-15 CVE-2020-21121 SQL Injection vulnerability in Kliqqi CMS 2.0.2
Pligg CMS 2.0.2 contains a time-based SQL injection vulnerability via the $recordIDValue parameter in the admin_update_module_widgets.php file.
network
low complexity
kliqqi CWE-89
critical
 9.8
9.8
2018-04-22 CVE-2017-17902 SQL Injection vulnerability in Kliqqi CMS 3.5.2
SQL Injection exists in Kliqqi CMS 3.5.2 via the randkey parameter of a new story at the pligg/story.php?title= URI.
network
low complexity
kliqqi CWE-89
critical
 9.8
9.8