CVE-2020-21121

Pligg CMS 2.0.2 contains a time-based SQL injection vulnerability via the $recordIDValue parameter in the admin_update_module_widgets.php file.
References
Link Resource
https://github.com/Kliqqi-CMS/Kliqqi-CMS/issues/259 Exploit Issue Tracking Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:kliqqi:kliqqi_cms:2.0.2:*:*:*:*:*:*:*

Information

Published : 2021-09-15 10:15

Updated : 2021-09-28 08:53


NVD link : CVE-2020-21121

Mitre link : CVE-2020-21121


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Products Affected

kliqqi

  • kliqqi_cms