CVE-2008-6968

Pligg Cms - SQL Injection

Title source: rule

Description

Multiple SQL injection vulnerabilities in submit.php in Pligg CMS 9.9.5 allow remote attackers to execute arbitrary SQL commands via the (1) category and (2) id parameters.

Exploits (1)

exploitdb WRITEUP

webappsphp

https://www.exploit-db.com/exploits/6173

View Code ZIP pw:eip

References (3)

[Various Sources] http://www.digitrustgroup.com/advisories/web-application-security-pligg

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/31062

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/45086

Scores

EPSS 0.0013

EPSS Percentile 31.9%

Details

CWE

CWE-89

Status published

Products (1)

pligg/pligg_cms 9.9.5

Published Aug 13, 2009

Tracked Since Feb 18, 2026