CVE-2014-9096

Multiple SQL injection vulnerabilities in recover.php in Pligg CMS 2.0.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) n parameter.
Configurations

Configuration 1 (hide)

cpe:2.3:a:pligg:pligg_cms:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-11-26 15:59

Updated : 2024-02-28 12:20


NVD link : CVE-2014-9096

Mitre link : CVE-2014-9096

CVE.ORG link : CVE-2014-9096


JSON object : View

Products Affected

pligg

  • pligg_cms
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')