Pluck is a content management system (CMS) developed using the PHP language. a code issue vulnerability exists in Pluck, which originates from the productβs admin backend page that does not validate file content. An attacker could execute malicious commands through this vulnerability.