4 matches found
Multiple vulnerabilities in Pligg CMS
Advisory ID: HTB23089 Product: Pligg CMS Vendor: Pligg, LLC. Vulnerable Versions: 1.2.1 and probably prior Tested Version: 1.2.1 Vendor Notification: 25 April 2012 Vendor Patch: 18 May 2012 Public Disclosure: 23 May 2012 Vulnerability Type: Local File Inclusion, Cross-Site Scripting XSS CVE...
CVE-2012-2436
Pligg CMS 1.2.1 is affected by multiple XSS vulnerabilities (CVE-2012-2436) due to insufficient sanitization of inputs in several parameters across admin and module PHP files. Specifically, vectorized input includes arbitrary GET parameters to /admin/admin_index.php (action=move/minimize), the ka...
Pligg CMS 1.2.1 Cross Site Scripting / Local File Inclusion
Advisory ID: HTB23089 Product: Pligg CMS Vendor: Pligg, LLC. Vulnerable Versions: 1.2.1 and probably prior Tested Version: 1.2.1 Vendor Notification: 25 April 2012 Vendor Patch: 18 May 2012 Public Disclosure: 23 May 2012 Vulnerability Type: Local File Inclusion, Cross-Site Scripting XSS CVE...
Pligg CMS 1.2.1 Cross Site Scripting / Local File Inclusion
Exploit for php platform in category web applications Product: Pligg CMS Vendor: Pligg, LLC. Vulnerable Versions: 1.2.1 and probably prior Tested Version: 1.2.1 Vendor Notification: 25 April 2012 Vendor Patch: 18 May 2012 Public Disclosure: 23 May 2012 Vulnerability Type: Local File Inclusion,...