Vulnerabilities > Pligg
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-20 | CVE-2024-42617 | Cross-Site Request Forgery (CSRF) vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_config.php?action=save&var_id=32 | 8.8 |
| 2024-08-20 | CVE-2024-42618 | Cross-Site Request Forgery (CSRF) vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /module.php?module=karma | 8.8 |
| 2024-08-20 | CVE-2024-42621 | Cross-Site Request Forgery (CSRF) vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_editor.php | 8.8 |
| 2024-08-20 | CVE-2024-42608 | Cross-Site Request Forgery (CSRF) vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/submit_page.php. | 8.8 |
| 2023-07-25 | CVE-2023-37677 | Unrestricted Upload of File with Dangerous Type vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 (also known as Kliqqi) was discovered to contain a remote code execution (RCE) vulnerability in the component admin_editor.php. | 9.8 |
| 2022-08-02 | CVE-2022-34955 | SQL Injection vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_topusers.php. | 9.8 |
| 2022-08-02 | CVE-2022-34956 | SQL Injection vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_groups.php. | 9.8 |