Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Unknown

CVE-2017-17889

Disclosure Date: April 22, 2018 (last updated November 26, 2024)

Kliqqi CMS 3.5.2 has XSS via a crafted group name in pligg/groups.php, a crafted Homepage string in a profile, or a crafted string in Tags or Description within pligg/submit.php.

Attacker Value

Unknown

CVE-2017-17902

Disclosure Date: April 22, 2018 (last updated November 26, 2024)

SQL Injection exists in Kliqqi CMS 3.5.2 via the randkey parameter of a new story at the pligg/story.php?title= URI.

2 Total Results

Displaying 1-2 of 2

Unknown

CVE-2017-17889

Unknown

CVE-2017-17902

Quick Cookie Notification