CVE-2016-10756

Kliqqi 3.0.0.5 allows CSRF with resultant Arbitrary File Upload because module.php?module=upload can be used to configure the uploading of .php files, and then modules/upload/uploadmain.php can be used for the upload itself...

EUVD-2017-9045

Malware in sbrugna...

EUVD-2020-13898

Malware in sbrugna...

EUVD-2017-9036

Malware in sbrugna...

EUVD-2018-3439

Malware in sbrugna...

EUVD-2016-1750

Malware in sbrugna...

CVE-2024-31673

Kliqqi-CMS 2.0.2 is vulnerable to SQL Injection in loaddata.php via the userid parameter...

CVE-2024-48700

Kliqqi-CMS has a background arbitrary code execution vulnerability that attackers can exploit to implant backdoors or getShell via the editpage.php component...

CVE-2023-37677

Pligg CMS v2.0.2 also known as Kliqqi was discovered to contain a remote code execution RCE vulnerability in the component admineditor.php...

CVE-2020-21119

SQL Injection vulnerability in Kliqqi-CMS 2.0.2 in admin/adminupdatemodulewidgets.php in recordIDValue parameter, allows attackers to gain escalated privileges and execute arbitrary code...

CVE-2024-48700

Kliqqi-CMS has a background arbitrary code execution vulnerability that attackers can exploit to implant backdoors or getShell via the editpage.php component...

CVE-2024-48700

Kliqqi-CMS has a background arbitrary code execution vulnerability that attackers can exploit to implant backdoors or getShell via the editpage.php component...

Kliqqi CMS 安全漏洞

Kliqqi CMS Pligg CMS is a content management system from Kliqqi open source. A security vulnerability exists in Kliqqi CMS. By exploiting this vulnerability, an attacker can plant a backdoor or getShell via the editpage.php component...

CVE-2024-48700

Kliqqi-CMS has a background arbitrary code execution vulnerability that attackers can exploit to implant backdoors or getShell via the editpage.php component...

CVE-2024-48700

CVE-2024-48700 concerns Kliqqi-CMS where a background arbitrary code execution flaw via the edit_page.php component could allow attackers to implant backdoors or obtain a shell. Public sources describe the vulnerability but do not provide concrete exploitation details or remediation status in the...

CVE-2024-48700

Kliqqi-CMS has a background arbitrary code execution vulnerability that attackers can exploit to implant backdoors or getShell via the editpage.php component...

PT-2024-33184 · Unknown · Kliqqi-Cms

Name of the Vulnerable Software and Affected Versions: Kliqqi-CMS affected versions not specified Description: The issue allows attackers to execute arbitrary code in the background, potentially leading to the implantation of backdoors or gaining shell access. This is achieved through exploitatio...

Kliqqi CMS Cross-Site Request Forgery Vulnerability (CNVD-2024-37617)

Kliqqi CMS Pligg CMS is Kliqqi open source a content management system . Kliqqi CMS v2.0.2 version of the cross-site request forgery vulnerability , the vulnerability stems from /admin/admineditor.php does not adequately verify whether the request is from a trusted user , an attacker can use this...

Kliqqi CMS Cross-Site Request Forgery Vulnerability (CNVD-2024-37614)

Kliqqi CMS Pligg CMS is Kliqqi open source a content management system . Kliqqi CMS v2.0.2 version of a cross-site request forgery vulnerability , the vulnerability stems from /admin/adminbackup.php?dobackup=database does not adequately verify that the request is from a trusted user , an attacker...

Kliqqi CMS Cross-Site Request Forgery Vulnerability (CNVD-2024-37621)

Kliqqi CMS Pligg CMS is Kliqqi open source a content management system . Kliqqi CMS v2.0.2 version of the cross-site request forgery vulnerability , the vulnerability stems from /admin/adminwidgets.php?action=remove&widget=Statistics does not adequately verify whether the request is from a truste...