This is a technical writeup describing an SQL injection vulnerability in Pligg CMS <= 1.1.4. The vulnerability occurs due to improper sanitization of the $_REQUEST['category'] parameter in /rsssearch.php, allowing attackers to manipulate SQL queries.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:Pligg CMS <= 1.1.4
No auth needed
Prerequisites:Access to the target's /rsssearch.php endpoint