Vulnerabilities > Pligg

DATE	CVE	VULNERABILITY TITLE	RISK
2008-08-10	CVE-2008-3572	Cross-Site Scripting vulnerability in Pligg CMS 9.9.5 Cross-site scripting (XSS) vulnerability in index.php in Pligg 9.9.5 allows remote attackers to inject arbitrary web script or HTML via the category parameter. network pligg CWE-79	4.3
2008-07-30	CVE-2008-3366	SQL Injection vulnerability in Pligg CMS 9.9.0 SQL injection vulnerability in story.php in Pligg CMS Beta 9.9.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. network low complexity pligg CWE-89	7.5
2008-04-14	CVE-2008-1774	SQL Injection vulnerability in Pligg CMS 9.9.0 SQL injection vulnerability in editlink.php in Pligg 9.9.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. network low complexity pligg CWE-89	7.5
2007-10-18	CVE-2007-5579	Credentials Management vulnerability in Pligg CMS 9.5 login.php in Pligg CMS 9.5 uses a guessable confirmation code when resetting a forgotten password, which allows remote attackers with knowledge of a username to reset that user's password by calculating the confirmationcode parameter. network low complexity pligg CWE-255	7.5

Vulnerabilities > Pligg {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Pligg"}]}