After the hurried and somewhat controversial release of Pligg v9.9.5 to fix some really bad security exploits it has come to light today that a new exploit has been discovered in v9.9.5. The new Pligg v9.9.5 exploit suffers from a captcha bypass due to an implementation issue. The impact is that an attacker can automatically create user accounts for pligg.

Popularity: 6% [?]

YADCBroadcast is a very sleek pligg template that’s ideally suited for a tech based pligg site or a news site. The colour scheme of PliggBroadcast is white, grey and blue with the grey using fades on stories and sidebars. With many features like advertising template and two completley new custom modules this is a template you wont want to be without.

Popularity: 5% [?]

Following the of the YADC BETA 1 System we are pleased to release a new version of our popular SocialVantage pligg template, v1.2 is now compatible with the YADC system. We have also added a fix that was pointed out to us and our new random featured story module.

Popularity: 5% [?]

Pligg have just released an updated version of their popular digg clone cms system to the pligg community, v9.9.5 has been released to combat that vast amount of security vulnerabilities that have been discovered within the system over the past few weeks. Most of v9.9.5 is bug fixes but there are some new features like AJAX In-line Story Editing for example which was contributed from Dave Mackey of InformedNetworker.com.

Popularity: 13% [?]

YADC which stands for “Yet Another *igg CLone” Launches it’s BETA 1 version to the public today, YADC is a fork of the popular Pligg CMS System and has been developed by Pligg’s former lead developer AshDigg. YADC can be best described as an open source social news/voting system that fixes many bugs along with all present security vulnerabilities reported in the current v9.9.0 of Pligg.

Popularity: 8% [?]

On Tuesday of this week we alerted Pligg based CMS users to a Remote SQL Injection Vulnerability that was present within the story.php. This issue is caused by an input validation error in the “story.php” script when processing the “id” parameter. The vulnerability could be exploited by malicious people to conduct SQL injection attacks and gain knowledge of sensitive information. Today evidence has arisen from James Bercegay of the GulfTech Security Research Team that would indicate that Pligg has many, many more security vulnerabilities from SQL attacks.

Popularity: 6% [?]

Earlier this month we released our Pligg Latest Submitted Story Module v0.1 after receiving some requests from users who seen the feature within our PliggBroadcast Template. Today we are pleased to announce the release of Pligg Randomly Featured Story Module v0.1 which is another module that many of you have asked for. The Pligg Randomly Featured Story Module v0.1 will display a randomly featured story on the homepage of your pligg site, stories are sourced from both the upcoming and published sections of your pligg website.

Popularity: 9% [?]

Everyday here at Social CMS Buzz we get around 3 - 5 requests to review websites, most requests are quickly cobbled together default installs of pligg filled with RSS Imported content needless to say these sites do not get reviewed. In contrast EntirelyOpenSource is in no way a default pligg based site but rather a combination of Pligg, Joomla and DokuWiki, with a great deal of time and effort having been placed into development and design EntirelyOpenSource is one site that’s definitely worth writing about.

Popularity: 12% [?]

After we revealed the existence of an Automated Pligg spam tool titled AutoPligg yesterday an good samaritan simply going by the name “sorry” contacted us. Your probably thinking what did this user called sorry have to say, well nothing really?. He did however provide us with a login for the AutoPligg forums as all registrations need to be approved, and It would be downright rude not to have a look at some of the threads concerning AutoPligg wouldn’t it?.

Popularity: 7% [?]

A new security vulnerability in Pligg V9.9.0 has been discovered at milw0rm.com, the exact type of security threat is that of a Remote SQL Injection in Pligg’s story.php. The pligg team have been alerted to the vulnerability from a user post by edupin in the pligg forums here, the post however now seems to have been deleted. You can view a Google cached version of the original pligg post here or find it through a Google search here.

Popularity: 4% [?]