jinwu1234567890/cms2

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-42619 ↗	Aug 20, 2024Tuesday, 20 August 2024, 19:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/domain_management.php?id=0&list=whitelist&remove=pligg.com
CVE-2024-42612 ↗	Aug 20, 2024Tuesday, 20 August 2024, 18:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/domain_management.php?whitelist_add
CVE-2024-42611 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/admin_page.php?link_id=1&mode=delete
CVE-2024-42605 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/edit_page.php?link_id=1
CVE-2024-42607 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=database
CVE-2024-42621 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_editor.php
CVE-2024-42609 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=avatars
CVE-2024-42610 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=files
CVE-2024-42618 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /module.php?module=karma
CVE-2024-42606 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_log.php?clear=1
CVE-2024-42613 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=install&widget=akismet
CVE-2024-42616 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=remove&widget=Statistics
CVE-2024-42617 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_config.php?action=save&var_id=32
CVE-2024-42603 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=clearall
CVE-2024-42604 ↗	Aug 20, 2024Tuesday, 20 August 2024, 15:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_group.php?mode=delete&group_id=3
CVE-2024-42608 ↗	Aug 20, 2024Tuesday, 20 August 2024, 14:15	8.8 HIGH	—
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/submit_page.php.