Vulnerabilities > Pligg > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-07-25 CVE-2023-37677 Unrestricted Upload of File with Dangerous Type vulnerability in Pligg CMS 2.0.2
Pligg CMS v2.0.2 (also known as Kliqqi) was discovered to contain a remote code execution (RCE) vulnerability in the component admin_editor.php.
network
low complexity
pligg CWE-434
critical
 9.8
9.8
2022-08-02 CVE-2022-34955 SQL Injection vulnerability in Pligg CMS 2.0.2
Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_topusers.php.
network
low complexity
pligg CWE-89
critical
 9.8
9.8
2022-08-02 CVE-2022-34956 SQL Injection vulnerability in Pligg CMS 2.0.2
Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_groups.php.
network
low complexity
pligg CWE-89
critical
 9.8
9.8