14 matches found
EUVD-2018-11107
Malware in sbrugna...
EUVD-2018-11106
Malware in sbrugna...
Plikli CMS 4.1.5 SQL Injection
Plikli CMS version 4.1.5 suffers from a remote SQL injection vulnerability. Exploit Title: Plikli CMS 4.1.5 - 'randkey' SQL Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 05.03.2024 Vendor Homepage: https://github.com/kkumar326/plikli Software Link:...
Plikli CMS SQL Injection Vulnerability
Plikli CMS is a content management system CMS. A SQL injection vulnerability exists in Plikli CMS version 4.0.0, which can be exploited by a remote attacker to execute arbitrary SQL commands by sending the 'id' parameter to the joingroup.php file or the 'commentid ' parameter to the joingroup.php...
CVE-2018-19415
Multiple SQL injection vulnerabilities in Plikli CMS 4.0.0 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to joingroup.php or 2 commentid parameter to story.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Plikli CMS 4.0.0 allow remote attackers to inject arbitrary web script or HTML via the 1 keyword parameter to groups.php; 2 username parameter to login.php; or 3 date parameter to search.php...
CVE-2018-19414
Multiple cross-site scripting XSS vulnerabilities in Plikli CMS 4.0.0 allow remote attackers to inject arbitrary web script or HTML via the 1 keyword parameter to groups.php; 2 username parameter to login.php; or 3 date parameter to search.php...
Sql injection
Multiple SQL injection vulnerabilities in Plikli CMS 4.0.0 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to joingroup.php or 2 commentid parameter to story.php...
CVE-2018-19414
Multiple cross-site scripting XSS vulnerabilities in Plikli CMS 4.0.0 allow remote attackers to inject arbitrary web script or HTML via the 1 keyword parameter to groups.php; 2 username parameter to login.php; or 3 date parameter to search.php...
CVE-2018-19415
Multiple SQL injection vulnerabilities in Plikli CMS 4.0.0 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to joingroup.php or 2 commentid parameter to story.php...
CVE-2018-19414
Multiple cross-site scripting XSS vulnerabilities in Plikli CMS 4.0.0 allow remote attackers to inject arbitrary web script or HTML via the 1 keyword parameter to groups.php; 2 username parameter to login.php; or 3 date parameter to search.php...
CVE-2018-19415
Multiple SQL injection vulnerabilities in Plikli CMS 4.0.0 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to joingroup.php or 2 commentid parameter to story.php...
CVE-2018-19415
The CVE-2018-19415 entry describes SQL injection vulnerabilities in Plikli CMS 4.0.0. According to connected documents, remote attackers can execute arbitrary SQL commands by supplying crafted input in (1) id to join_group.php and (2) comment_id to story.php. The root cause is improper handling o...
CVE-2018-19414
CVE-2018-19414 describes multiple XSS vulnerabilities in Plikli CMS 4.0.0 . The issues allow remote attackers to inject arbitrary web script/HTML via (1) the keyword parameter to groups.php, (2) the username parameter to login.php, or (3) the date parameter to search.php. The incident is document...